DNS Randomness Test

DNS Randomness Test
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Microsoft Antivirus Discussions    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
DNS Randomness Test Kayman 07-28-2008
Posted by FromTheRafters on July 28, 2008, 9:24 pm
If you were  Registered and logged in, you could reply and use other advanced thread options

> Twayne wrote:
>>> "The test takes a few seconds to complete. When its done you'll see a
>>> page where the transaction ID and source port randomness will be
>>> rated either GREAT, GOOD, or POOR. If you see a POOR rating, we
>>> recommend that contact your ISP and ask if they have plans to upgrade
>>> their nameserver software before August 7th."
> https://www.dns-oarc.net/oarc/services/dnsentropy
>>
>> Umm, I'd beware any stranger offering advice in case that appeals to you.
>> It's outright spam to begin with and of no known value or recognition
>> otherwise. It's designed to make you curious and want to visit that URL
>> where who knows what might go on? It'd be funny if it weren't so stupid!
>>
>>
>>
> I'd also beware of self appointed security experts who do not recognize
> the site www.dns-oarc.net.

But how do we know that clicking that link will actually
resolve to that (considering the topic) legitimate site? :O)

URL's are not dangerous, however the software you run to
access them may well be.



Posted by Lon on July 28, 2008, 9:53 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
FromTheRafters wrote:
>> Twayne wrote:
>>>> "The test takes a few seconds to complete. When its done you'll see a
>>>> page where the transaction ID and source port randomness will be
>>>> rated either GREAT, GOOD, or POOR. If you see a POOR rating, we
>>>> recommend that contact your ISP and ask if they have plans to upgrade
>>>> their nameserver software before August 7th."
>> https://www.dns-oarc.net/oarc/services/dnsentropy
>>> Umm, I'd beware any stranger offering advice in case that appeals to you.
>>> It's outright spam to begin with and of no known value or recognition
>>> otherwise. It's designed to make you curious and want to visit that URL
>>> where who knows what might go on? It'd be funny if it weren't so stupid!
>>>
>>>
>>>
>> I'd also beware of self appointed security experts who do not recognize
>> the site www.dns-oarc.net.
>
> But how do we know that clicking that link will actually
> resolve to that (considering the topic) legitimate site? :O)

Klothnet nslookup if your software doesn't display the full encoded
url on mouseover.
>
> URL's are not dangerous, however the software you run to
> access them may well be.

Most of the problems are just above and behind the keyboard.




Posted by =?Utf-8?B?TmV3ZWxsIFdoaXRl?= on July 29, 2008, 5:41 am
If you were  Registered and logged in, you could reply and use other advanced thread options

"FromTheRafters" wrote:


>
> But how do we know that clicking that link will actually
> resolve to that (considering the topic) legitimate site? :O)
>
> URL's are not dangerous, however the software you run to
> access them may well be.
>
>
Those of us who have reached the age of discretion right click on the link,
then copy and paste into our browser's address bar.

We get lots of practice at this because our incoming e-mails are shown in
plain text format.

We are suspicious old farts who plan on living a long time.
--
Regards,
Newell White


Posted by FromTheRafters on July 29, 2008, 7:34 am
If you were  Registered and logged in, you could reply and use other advanced thread options

>
> "FromTheRafters" wrote:
>
>
>>
>> But how do we know that clicking that link will actually
>> resolve to that (considering the topic) legitimate site? :O)
>>
>> URL's are not dangerous, however the software you run to
>> access them may well be.
>>
>>
> Those of us who have reached the age of discretion right click on the
> link,
> then copy and paste into our browser's address bar.

Which doesn't address the DNS poisoning issue. Any URL at all
(requiring a lookup) is suspect. Only comparing returns from a known
good name server can confirm if the URL's friendly name is actually
where your browser will be directed.
.



Posted by =?Utf-8?B?TmV3ZWxsIFdoaXRl?= on July 29, 2008, 8:39 am
If you were  Registered and logged in, you could reply and use other advanced thread options
"FromTheRafters" wrote:

>
> >
> > "FromTheRafters" wrote:
> >
> >
> >>
> >> But how do we know that clicking that link will actually
> >> resolve to that (considering the topic) legitimate site? :O)
> >>
> >> URL's are not dangerous, however the software you run to
> >> access them may well be.
> >>
> >>
> > Those of us who have reached the age of discretion right click on the
> > link,
> > then copy and paste into our browser's address bar.
>
> Which doesn't address the DNS poisoning issue. Any URL at all
> (requiring a lookup) is suspect. Only comparing returns from a known
> good name server can confirm if the URL's friendly name is actually
> where your browser will be directed.
> ..
Point taken.
But even before the DNS issue using the Internet involves a certain amount
of trust.

--
Regards,
Newell White




Similar ThreadsPosted
only test- solo test March 5, 2006, 6:41 am
Re: test only August 26, 2006, 9:56 am
ONLY A TEST! November 18, 2007, 10:55 am
Re: Trial/Test March 19, 2006, 10:01 pm
A new 'Beta' test from Panda July 26, 2007, 5:03 pm
Anti-Malware Test April 15, 2008, 8:22 pm
tools to test server Security September 24, 2005, 10:27 pm
Test to see if my posts show up in my reader. October 16, 2008, 3:26 pm
Re: Do you ever test VISTA i have found lots of problems ?! March 24, 2006, 10:45 am
RE: Do you ever test VISTA i have found lots of problems ?! March 24, 2006, 11:40 am

The site map in XML format XML site map

Contact Us | Privacy Policy