ejhildreth'sBlog

FYI: I just reran the doxpara.com test using CableOne's DNS servers, and it appears to finally been updated. Thank you CableOne for being on top of this so I didn't have to run all over the valley this weekend updating routers to OpenDNS!

Yesterday, I posted a tweet (http://twitter.com/ejhildreth/statuses/871831244) encouraging people that use CableOne as their Internet Service Provider (ISP) to run the free test at http://doxpara.com. Doxpara.com provides a Domain Name Server (DNS) tool that checks to see if your ISP's servers appear to be vulnerable to DNS Cache Poisoning (this allows the ability for somebody to impersonate any website). The test was created because there is an exploit out in the wild and *most* ISPs were still scrambling to get the hole patched.

Even though the likelihood of an attack on my home network was low, I didn't want to take any chances. I immediately switched my home router over to the DNS servers used by OpenDNS (http://www.opendns.com) because they were reporting that they had patched the vulnerability on their systems. Also, I went ahead and tried to contact CableOne to see when they were planning on patching the hole. Since this was a low priority for me, I simply sent CableOne an email to their tech support asking this question: