DNS poison attack by OpenDNS ??

Discussion in 'ESET Smart Security v4 Beta Forum' started by vijayind, Feb 27, 2009.

Thread Status:
Not open for further replies.
  1. vijayind

    vijayind Registered Member

    Joined:
    Aug 9, 2008
    Posts:
    1,413
    I just checked my logs on ESS v4 and it says that it found a DNS poison attack. But the DNS server mentioned is OpenDNS o_O

    I am guessing something, a flaw here ..

    Code:
    		
    2/27/2009 1:00:39 PM	Detected DNS cache poisoning attack	208.67.220.220:53	192.168.*.**1:57507	UDP			
    2/27/2009 1:00:29 PM	Detected DNS cache poisoning attack	208.67.220.220:53	192.168.*.**1:56003	UDP			
    2/27/2009 12:52:04 PM	Detected DNS cache poisoning attack	208.67.220.220:53	192.168.*.**1:64203	UDP			
    2/27/2009 12:52:01 PM	Detected DNS cache poisoning attack	208.67.220.220:53	192.168.*.**1:62710	UDP			
    2/27/2009 12:32:50 PM	Detected DNS cache poisoning attack	208.67.220.220:53	192.168.*.**1:63525	UDP			
    
    Specs:
    Vista SP1 (32-bit)
    ESS v4 beta
    Mamutu
    OpenDNS
     
  2. Novicex

    Novicex Registered Member

    Joined:
    Jan 21, 2009
    Posts:
    72
    This is normal, dont worry, this not an attack. But possibly if there is to many records in short of time (every 1-10 seconds) is ...... dont get crazy.
     
Thread Status:
Not open for further replies.