Ars Technica

Local DNS server, disable client caching?

I've read that when running a local DNS server, it is a good idea to disable the caching DNS clients at the workstations that will be using that DNS server. (See Simple DNS Plus, for ...
ZDNet

DNSpooq lets attackers poison DNS cache records

Security experts have disclosed today details about seven vulnerabilities impacting a popular DNS software package that is commonly deployed in networking equipment, such as routers and access points.
Dark Reading

Client-Side DNS Attack Emerges From Academic Research

The rise of speculative execution side-channel vulnerabilities is having an interesting side effect: More researchers from academia are finding their names in CVEs and bounty notices, and, in turn, ...
Bleeping Computer

DNS cache poisoning attacks return due to Linux weakness

Researchers from Tsinghua University and the University of California have identified a new method that can be used to conduct DNS cache poisoning attacks. The new discovery revives a 2008 bug that ...
Tidbits

DNS Clients Have Small Vector of Risk after Patch

The SANS Institute installed and tested out Apple’s fix for the underlying flaw in the domain name system (DNS) protocol, and found that a patched copy of Mac OS X 10.5 Leopard (the desktop version, ...
Ars Technica

Overriding OpenVPN DNS settings at the client on Linux

I'm trying to get my Linux install to utilize OpenVPN with ExpressVPN, but without it forcing everything over the tunnel/to their settings so that my local resources continue working. I'm part way ...
Threat Post

Microsoft Patches Critical Windows DNS Client Vulnerabilities

Microsoft patched three memory corruption vulnerabilities in the Windows DNS client that could be abused by a man-in-the-middle attacker to run arbitrary code. Three critical Windows DNS client ...