Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 17 replies
  • Subscribers 3 subscribers
  • Views 3455 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

I hope astaro patches their dns soon

William Warren
The full technical details of the dns flaw are out now:
http://www.hescominsoon.com/archives/906


This thread was automatically locked due to age.
Parents
  • 0
    I believe it was mentioned that the fix is in 7.300
  • 0 in reply to eganders_01
    let me rephrase..i hope they release a DNS patch sooner than 7.3 considering the exploit is now in the wild.

    Owner:  Emmanuel Technology Consulting

    http://etc-md.com

    Former Sophos SG(Astaro) advocate/researcher/Silver Partner

    PfSense w/Suricata, ntopng, 

    Other addons to follow

  • 0 in reply to William Warren
    I just finished testing to quell my own paranoia, and www.doxpara.com reports my ASG as "appears to be safe" I'm running 7.201, and have only one DNS forwarder set to point to OpenDNS. (208.67.222.222) 

    I also changed my forwarder to point to a non-patched public DNS server, 4.2.2.1, and it then reported as being vulnerable. This seems to be different to what some commentors said on the previous DNS thread. I wonder if they still had forwarders from their ISP listed? 

    Just to be sure, I repeated the test several times, on a couple different networks/asgs and the results were the same in each case. Astaro does NOT appear to be vulnerable unless you point it to a non patched DNS server.
  • 0 in reply to crashtestdummy
    Also, I just tested with 7.260, and even pointing at the vulnerable 4.2.2.1 dns server, it returns as secure on doxpara.com
Reply Children
No Data