Cricket on DNS
The latest on DNS Security, DNSSEC, IP Address Management... and more
Just a quick post today: A few Infoblox customers have asked me recently whether we're vulnerable to CVE-2013-2266. The answer: No. We don't use the code in question (that, is, it's commented out in NIOS builds of the BIND name server.
For more information, please see http://www.infoblox.com/support/customer/updates
A joint Microsoft-Symantec team just took down the command and control servers for the Bamital botnet, comprising over eight million clients. While this is a positive development, those eight-million-plus clients are now hunting for new command and control servers using a built-in domain generation algorithm. It's important that organizations identify infected clients and address the infection before new command and control servers spring up.
By now, you may have heard that Infoblox has released our DNS Firewall product, which is powered by Response Policy Zones (RPZs). In my last posting, I described what RPZs are generally, but in this posting, I'd like to discuss what distinguishes Infoblox's DNS Firewall from plain-vanilla RPZ support.