The big security news of Summer 2008 has been Dan Kaminsky's discovery of a serious vulnerability in DNS. This vulnerability could allow an attacker to redirect network clients to alternate servers of his own choosing, presumably for ill ends. Table of Contents Terminology Following a simple DNS query What's in a DNS packet? Resource Record Types Drilling down to a real query What's in the cache? Poisoning the cache Shenanigans, Version 1 Dan's Shenanigans What's the fix? Summary Other Reference...