Results 1 to 10 of 10

Thread: DNS Randomness Test

  1. #1
    Kayman
    Guest

    DNS Randomness Test

    "The test takes a few seconds to complete. When its done you'll see a page
    where the transaction ID and source port randomness will be rated either
    GREAT, GOOD, or POOR. If you see a POOR rating, we recommend that contact
    your ISP and ask if they have plans to upgrade their nameserver software
    before August 7th."
    https://www.dns-oarc.net/oarc/services/dnsentropy

  2. #2
    hummingbird
    Guest

    Re: DNS Randomness Test


    On Mon, 28 Jul 2008 20:36:31 +0700 'Kayman'
    wrote this on alt.comp.freeware:

    >"The test takes a few seconds to complete. When its done you'll see a page
    >where the transaction ID and source port randomness will be rated either
    >GREAT, GOOD, or POOR. If you see a POOR rating, we recommend that contact
    >your ISP and ask if they have plans to upgrade their nameserver software
    >before August 7th."
    >https://www.dns-oarc.net/oarc/services/dnsentropy



    My results:
    -Source Port Randomness: GREAT
    -Transaction ID Randomness: GREAT

    ....phew ;-)


    --
    "All truth passes through three stages.
    First, it is ridiculed, second it is violently opposed,
    and third, it is accepted as self-evident"
    (Arthur Schopenhauer)

  3. #3
    David H. Lipman
    Guest

    Re: DNS Randomness Test

    From: "hummingbird" <hummingbird@127.0.0.1>


    | On Mon, 28 Jul 2008 20:36:31 +0700 'Kayman'
    | wrote this on alt.comp.freeware:

    >>"The test takes a few seconds to complete. When its done you'll see a page
    >>where the transaction ID and source port randomness will be rated either
    >>GREAT, GOOD, or POOR. If you see a POOR rating, we recommend that contact
    >>your ISP and ask if they have plans to upgrade their nameserver software
    >>before August 7th."
    >>https://www.dns-oarc.net/oarc/services/dnsentropy



    | My results:
    | -Source Port Randomness: GREAT
    | -Transaction ID Randomness: GREAT

    | ...phew ;-)


    Verizon (my ISP)...

    -Source Port Randomness: POOR
    -Transaction ID Randomness: GREAT

    1.. 71.250.0.36 appears to have POOR source port randomness and GREAT transaction ID
    randomness.
    2.. 71.250.0.37 appears to have POOR source port randomness and GREAT transaction ID
    randomness.
    3.. 199.45.32.38 (nsdc.bellatlantic.net) appears to have POOR source port randomness and
    GREAT transaction ID randomness.
    4.. 151.198.0.38 (nsmad.bellatlantic.net) appears to have POOR source port randomness
    and GREAT transaction ID randomness.

    | --
    Dave
    http://www.claymania.com/removal-trojan-adware.html
    Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp



  4. #4
    Andrew Rossmann
    Guest

    Re: DNS Randomness Test

    In article <g6ki0v$a0k$1@registered.motzarella.org>,
    kaymanDeleteThis@operamail.com says...
    > "The test takes a few seconds to complete. When its done you'll see a page
    > where the transaction ID and source port randomness will be rated either
    > GREAT, GOOD, or POOR. If you see a POOR rating, we recommend that contact
    > your ISP and ask if they have plans to upgrade their nameserver software
    > before August 7th."
    > https://www.dns-oarc.net/oarc/services/dnsentropy


    Some ISP's, such as Comcast, are fully patched, but also have an
    additional layer of protection. That additional layer tends to cause
    issues such as 'NAT or firewall issue' with the doxpara test, or the
    POOR notes on the test above. It's the tests being fooled by the
    protection, not a weakness of the protection.

    --
    If there is a no_junk in my address, please REMOVE it before replying!
    All junk mail senders will be prosecuted to the fullest extent of the
    law!!
    http://home.att.net/~andyross

  5. #5
    hummingbird
    Guest

    Re: DNS Randomness Test


    On Mon, 28 Jul 2008 16:36:21 -0400 'David H. Lipman'
    wrote this on alt.comp.freeware:

    >From: "hummingbird" <hummingbird@127.0.0.1>
    >
    >
    >| On Mon, 28 Jul 2008 20:36:31 +0700 'Kayman'
    >| wrote this on alt.comp.freeware:
    >
    >>>"The test takes a few seconds to complete. When its done you'll see a page
    >>>where the transaction ID and source port randomness will be rated either
    >>>GREAT, GOOD, or POOR. If you see a POOR rating, we recommend that contact
    >>>your ISP and ask if they have plans to upgrade their nameserver software
    >>>before August 7th."
    >>>https://www.dns-oarc.net/oarc/services/dnsentropy

    >
    >
    >| My results:
    >| -Source Port Randomness: GREAT
    >| -Transaction ID Randomness: GREAT
    >
    >| ...phew ;-)
    >
    >
    >Verizon (my ISP)...
    >
    >-Source Port Randomness: POOR
    >-Transaction ID Randomness: GREAT
    >
    > 1.. 71.250.0.36 appears to have POOR source port randomness and GREAT transaction ID
    >randomness.
    > 2.. 71.250.0.37 appears to have POOR source port randomness and GREAT transaction ID
    >randomness.
    > 3.. 199.45.32.38 (nsdc.bellatlantic.net) appears to have POOR source port randomness and
    >GREAT transaction ID randomness.
    > 4.. 151.198.0.38 (nsmad.bellatlantic.net) appears to have POOR source port randomness
    >and GREAT transaction ID randomness.



    Is it time to give Verizon a big kick up the ass? ;-)


    --
    "All truth passes through three stages.
    First, it is ridiculed, second it is violently opposed,
    and third, it is accepted as self-evident"
    (Arthur Schopenhauer)

  6. #6
    David H. Lipman
    Guest

    Re: DNS Randomness Test

    From: "hummingbird" <hummingbird@127.0.0.1>


    | On Mon, 28 Jul 2008 16:36:21 -0400 'David H. Lipman'
    | wrote this on alt.comp.freeware:

    >>From: "hummingbird" <hummingbird@127.0.0.1>



    >>| On Mon, 28 Jul 2008 20:36:31 +0700 'Kayman'
    >>| wrote this on alt.comp.freeware:


    >>>>"The test takes a few seconds to complete. When its done you'll see a page
    >>>>where the transaction ID and source port randomness will be rated either
    >>>>GREAT, GOOD, or POOR. If you see a POOR rating, we recommend that contact
    >>>>your ISP and ask if they have plans to upgrade their nameserver software
    >>>>before August 7th."
    >>>>https://www.dns-oarc.net/oarc/services/dnsentropy



    >>| My results:
    >>| -Source Port Randomness: GREAT
    >>| -Transaction ID Randomness: GREAT


    >>| ...phew ;-)



    >>Verizon (my ISP)...


    >>-Source Port Randomness: POOR
    >>-Transaction ID Randomness: GREAT


    >> 1.. 71.250.0.36 appears to have POOR source port randomness and GREAT transaction ID
    >>randomness.
    >> 2.. 71.250.0.37 appears to have POOR source port randomness and GREAT transaction ID
    >>randomness.
    >> 3.. 199.45.32.38 (nsdc.bellatlantic.net) appears to have POOR source port randomness
    >> and
    >>GREAT transaction ID randomness.
    >> 4.. 151.198.0.38 (nsmad.bellatlantic.net) appears to have POOR source port randomness
    >>and GREAT transaction ID randomness.



    | Is it time to give Verizon a big kick up the ass? ;-)


    /* Indeed ! */

    Especially in light of their dropping ALL but the "Big 8" Usenet News Groups.

    --
    Dave
    http://www.claymania.com/removal-trojan-adware.html
    Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp



  7. #7
    hummingbird
    Guest

    Re: DNS Randomness Test


    On Mon, 28 Jul 2008 17:33:46 -0400 'David H. Lipman'
    wrote this on alt.comp.freeware:

    >From: "hummingbird" <hummingbird@127.0.0.1>
    >
    >
    >| On Mon, 28 Jul 2008 16:36:21 -0400 'David H. Lipman'
    >| wrote this on alt.comp.freeware:
    >
    >>>From: "hummingbird" <hummingbird@127.0.0.1>

    >
    >
    >>>| On Mon, 28 Jul 2008 20:36:31 +0700 'Kayman'
    >>>| wrote this on alt.comp.freeware:

    >
    >>>>>"The test takes a few seconds to complete. When its done you'll see a page
    >>>>>where the transaction ID and source port randomness will be rated either
    >>>>>GREAT, GOOD, or POOR. If you see a POOR rating, we recommend that contact
    >>>>>your ISP and ask if they have plans to upgrade their nameserver software
    >>>>>before August 7th."
    >>>>>https://www.dns-oarc.net/oarc/services/dnsentropy

    >
    >
    >>>| My results:
    >>>| -Source Port Randomness: GREAT
    >>>| -Transaction ID Randomness: GREAT

    >
    >>>| ...phew ;-)

    >
    >
    >>>Verizon (my ISP)...

    >
    >>>-Source Port Randomness: POOR
    >>>-Transaction ID Randomness: GREAT

    >
    >>> 1.. 71.250.0.36 appears to have POOR source port randomness and GREAT transaction ID
    >>>randomness.
    >>> 2.. 71.250.0.37 appears to have POOR source port randomness and GREAT transaction ID
    >>>randomness.
    >>> 3.. 199.45.32.38 (nsdc.bellatlantic.net) appears to have POOR source port randomness
    >>> and
    >>>GREAT transaction ID randomness.
    >>> 4.. 151.198.0.38 (nsmad.bellatlantic.net) appears to have POOR source port randomness
    >>>and GREAT transaction ID randomness.

    >
    >
    >| Is it time to give Verizon a big kick up the ass? ;-)
    >
    >
    >/* Indeed ! */
    >
    >Especially in light of their dropping ALL but the "Big 8" Usenet News Groups.



    Shame on them!

    First they came for the binaries...
    Then they came for the non-Big 8...


    --
    "All truth passes through three stages.
    First, it is ridiculed, second it is violently opposed,
    and third, it is accepted as self-evident"
    (Arthur Schopenhauer)

  8. #8
    Derio
    Guest

    Re: DNS Randomness Test

    If you're not using OpenDNS, you're doing it all wrong. Seriously.

    http://www.opendns.com/



    "David H. Lipman" <DLipman~nospam~@Verizon.Net> wrote in
    news:I46dnWrA5q9XsBPVnZ2dnUVZ_qrinZ2d@giganews.com:

    > From: "hummingbird" <hummingbird@127.0.0.1>
    >
    >
    >| On Mon, 28 Jul 2008 20:36:31 +0700 'Kayman'
    >| wrote this on alt.comp.freeware:
    >
    >>>"The test takes a few seconds to complete. When its done you'll see a
    >>>page where the transaction ID and source port randomness will be
    >>>rated either GREAT, GOOD, or POOR. If you see a POOR rating, we
    >>>recommend that contact your ISP and ask if they have plans to upgrade
    >>>their nameserver software before August 7th."
    >>>https://www.dns-oarc.net/oarc/services/dnsentropy

    >
    >
    >| My results:
    >| -Source Port Randomness: GREAT
    >| -Transaction ID Randomness: GREAT
    >
    >| ...phew ;-)
    >
    >
    > Verizon (my ISP)...
    >
    > -Source Port Randomness: POOR
    > -Transaction ID Randomness: GREAT
    >
    > 1.. 71.250.0.36 appears to have POOR source port randomness and
    > GREAT transaction ID
    > randomness.
    > 2.. 71.250.0.37 appears to have POOR source port randomness and
    > GREAT transaction ID
    > randomness.
    > 3.. 199.45.32.38 (nsdc.bellatlantic.net) appears to have POOR source
    > port randomness and
    > GREAT transaction ID randomness.
    > 4.. 151.198.0.38 (nsmad.bellatlantic.net) appears to have POOR
    > source port randomness
    > and GREAT transaction ID randomness.
    >
    >| --
    > Dave
    > http://www.claymania.com/removal-trojan-adware.html
    > Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp
    >
    >
    >



  9. #9
    Lutz Donnerhacke
    Guest

    Re: DNS Randomness Test

    * Derio wrote:
    > If you're not using OpenDNS, you're doing it all wrong. Seriously.
    > http://www.opendns.com/


    OpenDNS is vulnerable to the attack as well as any other nonvalidating
    resolver.

    Poisoning a fully patched resolver in 10 hours:
    http://tservice.net.ru/~s0mbre/blog/...008_08_08.html


    Compare DNS resolver strategies (incl. OpenDNS and look at the BOGUS messages):
    http://www.iks-jena.de/cgi-bin/dnssec_how_dns_works.pl

  10. #10
    Unruh
    Guest

    Re: DNS Randomness Test

    Derio <DerioD@yahoo.com> writes:

    >If you're not using OpenDNS, you're doing it all wrong. Seriously.


    >http://www.opendns.com/


    That does not help much. While opendns might not have a poisoned cache, the
    dns server IT gets its information from might be poisoned. Ie, when you ask
    opendns for an address, it does NOT have all addresses in its cache. Simply
    not big enough. It goes an asks the next DNS server for that address. If
    that dns server is poisoned, then it will deliver the wrong address to
    opendns, and you are screwed. DNS is a whole web of trust, not simply a
    single machine, and a single poisoned node can poison the whole web.

    That, AFAIK, is why this cache poisoning attack is so serious.
    It helps a lot if your immediate DNS server is OK. But it is not the whole
    story.





    >"David H. Lipman" <DLipman~nospam~@Verizon.Net> wrote in
    >news:I46dnWrA5q9XsBPVnZ2dnUVZ_qrinZ2d@giganews.com:


    >> From: "hummingbird" <hummingbird@127.0.0.1>
    >>
    >>
    >>| On Mon, 28 Jul 2008 20:36:31 +0700 'Kayman'
    >>| wrote this on alt.comp.freeware:
    >>
    >>>>"The test takes a few seconds to complete. When its done you'll see a
    >>>>page where the transaction ID and source port randomness will be
    >>>>rated either GREAT, GOOD, or POOR. If you see a POOR rating, we
    >>>>recommend that contact your ISP and ask if they have plans to upgrade
    >>>>their nameserver software before August 7th."
    >>>>https://www.dns-oarc.net/oarc/services/dnsentropy

    >>
    >>
    >>| My results:
    >>| -Source Port Randomness: GREAT
    >>| -Transaction ID Randomness: GREAT
    >>
    >>| ...phew ;-)
    >>
    >>
    >> Verizon (my ISP)...
    >>
    >> -Source Port Randomness: POOR
    >> -Transaction ID Randomness: GREAT
    >>
    >> 1.. 71.250.0.36 appears to have POOR source port randomness and
    >> GREAT transaction ID
    >> randomness.
    >> 2.. 71.250.0.37 appears to have POOR source port randomness and
    >> GREAT transaction ID
    >> randomness.
    >> 3.. 199.45.32.38 (nsdc.bellatlantic.net) appears to have POOR source
    >> port randomness and
    >> GREAT transaction ID randomness.
    >> 4.. 151.198.0.38 (nsmad.bellatlantic.net) appears to have POOR
    >> source port randomness
    >> and GREAT transaction ID randomness.
    >>
    >>| --
    >> Dave
    >> http://www.claymania.com/removal-trojan-adware.html
    >> Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp
    >>
    >>
    >>



Similar Threads

  1. Internet time-out
    By Eros in forum Networking Forum
    Replies: 3
    Last Post: 06-05-09, 03:21 AM
  2. Connecting a Xbox360 to a T-Mobile Wireless Hotspot (Failing MTU Test)
    By Seraphstrike in forum General Broadband Forum
    Replies: 6
    Last Post: 05-02-08, 02:07 PM
  3. Help for 25Mbps(down)/512Kbps(up) connection !!!
    By ge_or_ge in forum Broadband Tweaks Help
    Replies: 9
    Last Post: 10-19-07, 10:08 PM
  4. Slow page loading. Loads of info! Help.
    By Magnus3204 in forum General Broadband Forum
    Replies: 3
    Last Post: 09-06-07, 08:13 AM
  5. need a lil help
    By MrSith in forum General Broadband Forum
    Replies: 17
    Last Post: 04-12-07, 03:28 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •