Retro attack gets new life, worries browser makers

Retro attack gets new life, worries browser makers
Robert Lemos, SecurityFocus 2007-08-06

LAS VEGAS -- On a summer day seven weeks ago, a small group of software architects and network engineers descended on Stanford University, worried.

Colapse all | Post comment

Retro attack gets new life, worries browser makers 2007-08-06
Dan Rabinowitz (1 replies)

What the heck does this mean?

"Instead, companies should implement firewall rules that block Internet domains from resolving to internal network addresses, said Stanford researcher Jackson."

Sounds like a DNS issue, not a firewall issue... What am I missing?

-dan...

[ more ] [ reply ]

Re: Retro attack gets new life, worries browser makers 2007-08-12
!firewall

I think they should have said IPS/IDS but the line is blurring. You may be able to configure a rule/signature on a firewall that can do full protocol inspection. Most "stateful inspection" packet filters won't give you this granularity though as you point out. ...

[ more ] [ reply ]

I guess it's time to move to Lynx on OpenBSD! 2007-08-07
Anonymous (1 replies)

I guess it's time to move to Lynx on OpenBSD!...

[ more ] [ reply ]

Re: I guess it's time to move to Lynx on OpenBSD! 2007-08-08
Anonymous

Disabling JavaScript and all plugins (Flash, Java, Acrobat, etc) will work too. The attack isn't OS-specific, so OpenBSD won't help....

[ more ] [ reply ]

But it will take 3 years ofr the bad ..... are you kidding ? 2007-08-09
Anonymous

this is http, javascript.. not assembler. ffsk...

[ more ] [ reply ]