Posts tagged OpenDNS

Just another reason why I use OpenDNS & another reason why you should start using OpenDNS. I’ve mentioned OpenDNS plenty times here on The Glitch, so hopefully you have listened. Earlier this month, they released a new feature called SmartCache for all their versions of OpenDNS… including their free version.

A few weeks ago we made the decision that SmartCache, one of OpenDNS’s most significant DNS caching innovations, would be available for free to all of our 15 million users around the world, regardless of which version of the service you’re using. SmartCache keeps track of the last known good IPs for Web sites that are experiencing an authoritative DNS outage and hands them back instead of returning no answer. In many cases, the IPs associated with the web server or other services you are trying to reach work just fine and the Web site loads successfully. Without SmartCache, it’d feel like the site was down. So in effect, SmartCache makes Web sites that are down and unreachable for the rest of the Internet load for OpenDNS users.

In order to take advantage of SmartCache, you still need to take action and enable it on your network. Here’s how to do it:

1. Log in to your OpenDNS account.
2. Go to the Settings tab.
3. Select the network you want to enable SmartCache for.
4. Choose Advanced Settings.
5. Select “Enable SmartCache on this Network” at the top.

Despite the best efforts of the security community, the details of a critical internet vulnerability discovered by Dan Kaminsky about six months ago have leaked. Hackers are racing to produce exploit code, and network operators who haven’t already patched the hole are scrambling to catch up. The whole mess is a good illustration of the problems with researching and disclosing flaws like this.

The details of the vulnerability aren’t important, but basically it’s a form of DNS cache poisoning. The DNS system is what translates domain names people understand, like www.google.com, to IP addresses computers understand: 72.14.207.99. There is a whole family of vulnerabilities where the DNS system on your computer is fooled into thinking that the IP address for www.badsite.com is really the IP address for www.goodsite.com. However, this “fooling” is taking place within the DNS server in this case.

Do you think your ISP’s DNS servers are affected by the vulnerability? You can check here (right side of page). If you are using OpenDNS like me, you don’t have to worry as they are already protected against this vulnerability.

[SOURCE: Lifehacker & Wired]

This is a great FREE service and will increase security in your surfing habits. What is DNS you ask? Let me explain: DNS is what allows you to type in a web address and end up at a website. DNS is transparent and yet fundamental to the operation of the internet. There are two sides to DNS, the authoritative side which give out answers and the recursive side that ask questions on your behalf and holds onto them in case you ask again. I would suggest this service to anyone that has problems with their own ISP’s default DNS and to internet novices. If you want to give them a try, here is a page that will give you instructions on how to do so:

Getting Started!

OpenDNS can identify and stop sites trying to phish (steal) your personal information or money. The OpenDNS phishing protection works with all operating systems and browsers, and complements any other security measures already in use, such as a firewall and anti-virus software. [SOURCE: OpenDNS]