DNS - Important

[Red Squirrel]

There is a HUGE flaw in the DNS server software and I did update it but not 100% sure if it fixed the issue. This is internet wide, to consider the seriousness of this I'm surprised its not all over the news as it could be VERY dangerous.

The flaw allows an attacker to redirect ANY domain/subdomain to ANY IP.

So a hacker could actually take over a banking domain and redirect to a fake banking site so when you log in they get your username and password.

I have yet to hear a clear explanation of the flaw, but basically it allows the attacker to change DNS records on any internet facing DNS server.

The DNS for AoV is managed by ns1.iceteks.net and ns2.iceteks.net which are actually on the same physical server for now.

Should any issues arise take note of these IPs:


uovalor.com: 74.86.121.176 (forums/site)
www.uovalor.com: 74.86.121.176 (forums/site)
login.uovalor.com: 67.19.158.243 (shard login server)
uosrv.uovalor.com: 67.19.158.243 (shard server)


So if you start getting issues connecting to the shard just plug the IP in razor (67.19.158.243)

Archived topic from AOV, old topic ID:3375, old post ID:21520

[Red Squirrel]

I've been tweaking the DNS server with various security tweaks so we should be good, but I'm still trying to find a test site that I can plug the IP in to confirm that I actually got the patch. We're running .2 of a version behind after an update so something seems fishy.

Archived topic from AOV, old topic ID:3375, old post ID:21529

[Mosin]

thats pretty sketchy

Archived topic from AOV, old topic ID:3375, old post ID:21558

[Red Squirrel]

I was able to confirm our server to be OK so that's good.

Archived topic from AOV, old topic ID:3375, old post ID:21562