DNS poison attack by OpenDNS ??

Discussion in 'ESET Smart Security v4 Beta Forum' started by vijayind, Feb 27, 2009.

Thread Status:
Not open for further replies.
  1. vijayind
    Offline

    vijayind Registered Member

    I just checked my logs on ESS v4 and it says that it found a DNS poison attack. But the DNS server mentioned is OpenDNS o_O

    I am guessing something, a flaw here ..

    Code:
    		
    2/27/2009 1:00:39 PM	Detected DNS cache poisoning attack	208.67.220.220:53	192.168.*.**1:57507	UDP			
    2/27/2009 1:00:29 PM	Detected DNS cache poisoning attack	208.67.220.220:53	192.168.*.**1:56003	UDP			
    2/27/2009 12:52:04 PM	Detected DNS cache poisoning attack	208.67.220.220:53	192.168.*.**1:64203	UDP			
    2/27/2009 12:52:01 PM	Detected DNS cache poisoning attack	208.67.220.220:53	192.168.*.**1:62710	UDP			
    2/27/2009 12:32:50 PM	Detected DNS cache poisoning attack	208.67.220.220:53	192.168.*.**1:63525	UDP			
    
    Specs:
    Vista SP1 (32-bit)
    ESS v4 beta
    Mamutu
    OpenDNS
  2. Novicex
    Offline

    Novicex Registered Member

    This is normal, dont worry, this not an attack. But possibly if there is to many records in short of time (every 1-10 seconds) is ...... dont get crazy.
Thread Status:
Not open for further replies.