Hi Everyone,
I'm just curious if someone could please explain to me exactly why Microsoft's web servers were so vulnerable these last few days. Apparantly, the story is that some tech guy misconfigured the router(s) that provide access to Microsoft's DNS servers. And, seeing as how they were all on the same subnet, none of the servers were accessible and thus Microsoft's websites all were unreachable. Then, realizing this flaw, a bunch of script kiddies did a DDoS attack on the DNS router(s). Shutting down the websites again.
My questions are, just because Microsoft's DNS servers were unreachable, why did everyone lose access. Shouldn't DNS information be propagated throughout the Internet? Thus if one or two servers go down, other servers contain the same mapping information?
Or, since Microsoft was hosting its own DNS internally, shutting them down prevented their servers from reaching other servers' internal addresses? Shouldn't DNS information on each computer be cached?
Thanks,
Dennis
I'm just curious if someone could please explain to me exactly why Microsoft's web servers were so vulnerable these last few days. Apparantly, the story is that some tech guy misconfigured the router(s) that provide access to Microsoft's DNS servers. And, seeing as how they were all on the same subnet, none of the servers were accessible and thus Microsoft's websites all were unreachable. Then, realizing this flaw, a bunch of script kiddies did a DDoS attack on the DNS router(s). Shutting down the websites again.
My questions are, just because Microsoft's DNS servers were unreachable, why did everyone lose access. Shouldn't DNS information be propagated throughout the Internet? Thus if one or two servers go down, other servers contain the same mapping information?
Or, since Microsoft was hosting its own DNS internally, shutting them down prevented their servers from reaching other servers' internal addresses? Shouldn't DNS information on each computer be cached?
Thanks,
Dennis
Facebook
Twitter