Posted by ejhildreth
Yesterday, I posted a tweet (http://twitter.com/ejhildreth/statuses/871831244) encouraging people that use CableOne as their Internet Service Provider (ISP) to run the free test at http://doxpara.com. Doxpara.com provides a Domain Name Server (DNS) tool that checks to see if your ISP's servers appear to be vulnerable to DNS Cache Poisoning (this allows the ability for somebody to impersonate any website). The test was created because there is an exploit out in the wild and *most* ISPs were still scrambling to get the hole patched.
Even though the likelihood of an attack on my home network was low, I didn't want to take any chances. I immediately switched my home router over to the DNS servers used by OpenDNS (http://www.opendns.com) because they were reporting that they had patched the vulnerability on their systems. Also, I went ahead and tried to contact CableOne to see when they were planning on patching the hole. Since this was a low priority for me, I simply sent CableOne an email to their tech support asking this question:
Continue reading...
