Take mitigation now

The main issus with DNS is not so much if YOU have patched, but rather if your ISP and all their upstream servers have.

http://blog.metasploit.com/2008/07/on-dns-attacks-in-wild-and-journalistic.html

HDMoore’s Austin ISP of AT&T didn’t patch in a proactive manner.  If you are holding back on the patches on your SBS box for fear that they will have issues, we know the known issues (see http://blogs.technet.com/sbs). 

But please take mitigation action.  Consider flipping to opendns.org as your forwarders, stop and restart your DNS services.

Comments are closed.

Post Navigation