Domain name servers on the net are still often vulnerable to attacks despite some marked improvements, according to a new survey. Many organisations are making efforts to install the most recent versions of BIND and eliminate Microsoft DNS for external servers. But most still leave their systems open to denial of service and pharming attacks by allowing recursion and zone transfers in response to arbitrary requests from unauthenticated parties.

The third annual survey of domain name servers on the internet by network appliance firm Infoblox also found evidence of growing attempts to tackle spam. Infoblox’s survey is based on a sample of five per cent of the IPv4 address space of nearly 80m addresses. DNS security improves as firms tool up to tackle spam | The Register

Technorati Tags: dns security, spam