Sea Turtle DNS Hijack

Question

Hi All,&nbsp;
Does GTM has any impact on the Sea Turtle DNS Hijack?&nbsp;
Does is have a mechanism to alert any modification or change in the record?&nbsp;
Regards,
Gokul&nbsp;

boneyard · Answer

in which way are you using the BIG-IP DNS (former GTM) when asking this question?&nbsp;
if it is a DNS resolver for your clients then you don't want to be informed of every IP change on every DNS record, because that just happens when a website changes hosting provider or with DNS load balancing or ...&nbsp;
if it is a DNS server, then you should just use strong passwords and make sure admin access is tightly restricted. those attackers did nothing special, just gain admin access to DNS servers to change records.&nbsp;
and look into implementing DNSSEC.&nbsp;

Forum Discussion

Sea Turtle DNS Hijack

Recent Discussions

Application only need to access from 2 uris

In Radius auth, how to allow second attempt of token input when the first input is incorrect?

AS3 Limitations

Unable to install firmware OS and drop at 10%

Statistics ›› Analytics : HTTP : Overview

Related Content

Devopsdays SEA Survey Results and Trip Recap

Patching Won't Prevent Compromise & Repos Hijacking June 18th – 24th This Week in Security

Is your SOA really SEA?

About Session Hijacking

Oracle Identity Manager Remote Hijack Vulnerability (CVE-2017-10151)

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS