mdnsresponder - Hack a Day

Apple finally fixes DNS bug

posted Sep 15th 2008 2:24pm by Eliot Phillips
filed under: iphone hacks, macs hacks, news, security hacks

With today’s release of Security Update 2008-006 Apple has finally addressed this summer’s DNS bug. In their previous update they fixed BIND, but that only affects people running servers. Now, they’ve updated mDNSResponder. Clients are no longer susceptible to DNS cache poisoning attacks thanks to the inclusion of source port randomization.

The Security Update addresses some other interesting bugs. Time Machine was saving sensitive logs without using the proper permissions, so any user could view them.

[photo: edans]

Comments [4]

Hack a Day serves up fresh hacks each day, every day from around the web and a special How-To hack each week.

Send us your hacks

Hacks

Resources

RSS newsfeeds

RSS news feed

Powered by WordPress

Most commented on (30 days)

SparkFun gets a cease and Desist (137)
25 Scariest experiments (101)
Ubuntu 9.10 Karmic Koala (97)
Hack a Day; into the future (95)
Banned Xbox 360's - boon or bust? (80)
SSD upgrade for 24" iMac (74)
Single-wing flight based on maple seed aerodynamics (71)
8-bit device quenches iPhone envy (58)
Didgeridoo modded to include electronic manipulation (58)
Physical email notification (56)

Recent comments

BobFromIndia on Unhackable Netbooks given to students
Matt on Hackaday Links: Sunday November 22
twtechnical on 25 Scariest experiments
nigelricky on Kill A Watt teardown
Stefan Rehm on Building capacitive sensitive floor tiles
lurker on Hackaday Links: Sunday November 22
Kaylee Jen on MSI Wind extended battery
Kaylee Jen on Stereo microphones in an MSI Wind
PanterRra on Wireless keyboards easily cracked
moo on Build a camera boom at less than a grand