FRUUG - Front Range Unix Users Group
FRUUG home
meeting archive
about FRUUG
join FRUUG
contact info
December 2002 Newsletter of the
Front Range UNIX Users Group

Cndnsd Vrsn: 4 PM Thursday 12/12 ACS Room 123- DNS Threats


Threats to the Internet's Domain Name System

The next meeting of the Front Range UNIX Users Group (FRUUG) will be held at 4:00 P.M. on Thursday, December 12. Cricket Liu, author of both "DNS & BIND" and "DNS & BIND Cookbook" will talk about new threats to the Domain Name Service (DNS).

There have been a number of recent attacks highlighting the vulnerability of the Internet's DNS Infrastructure, including:

  • A concerted and fairly successful attack against the root name servers
  • New vulnerabilities discovered in BIND implementations
  • The move of a root name server to provide better resilience in the face of an attack

Cricket will talk about these and other threats to the Internet's Domain Name System, both technical and political. He'll also remind you of some of the housekeeping chores you need to do to keep your name server up-to-date and secure.

About the Speaker

Cricket Liu matriculated at the University of California's Berkeley Campus, that great bastion of free speech, unencumbered UNIX, and cheap pizza. He joined Hewlett-Packard after graduation and worked for HP for nine years.

Cricket began managing the zone after the Loma Prieta earthquake forcibly transferred the zone's management from HP Labs to HP's Corporate Offices (by cracking a sprinkler main and flooding Lab's computer room-- talk about serendipity!) Cricket was for over three years, and then joined HP's Professional Services organization to found HP's Internet consulting program.

Cricket left HP in 1997 to form Acme Byte & Wire, a DNS consulting and training company with his friend (and co-author) Matt Larson. Network Solutions acquired Acme in June 2000, and later the same day merged with VeriSign. Cricket worked for a year as Director of DNS Product Management for VeriSign Global Registry Services.

In September 2001, Cricket joined Men & Mice, an Icelandic company specializing in DNS software and services. He is currently their Vice President of Research and Development. Cricket, of course, lives in Boulder.

Thanks to O'Reilly & Associates for this great biography which was almost entirely lifted from the DNS & BIND Cookbook.

Meeting Location

This meeting will be in room 123 of the CU Academic Computing Center building at Arapahoe and Marine Streets in Boulder. Marine St intersects Arapahoe at 38th St; the Computing Center is on the southwest corner.

See <> for map

Our Last Meeting

At our September 2002 meeting, Barb Dijker of Netrack talked about her experience with anti-spam tools that work, focusing on SpamAssassin. Barb covered using SpamAssassin integrated with procmail and through the milter mechanism in sendmail, settling on the procmail approach as the less troublesome way to use the software.

There was a lively discussion of other approaches to filtering spam, including using black hole lists and spam checksum databases.

Barb's slides are available in the FRUUG meeting archive at

Future Meetings

Our next meeting is tentatively scheduled for February 3, 2003, with a talk on IP-based Storage Area Networks.

FRUUG Giveaways

Are you familiar with the new FRUUG Library Merit Badge program? If not, it might be a good time to learn all about it by consulting the FRUUG Library page on our Web site.

In honor of Cricket Liu's talk, O'Reilly & Associates has sent us three copies of "DNS & Bind, 4th Edition" and "DNS & BIND Cookbook" containing solutions and examples for system administrators. One copy of each book goes to the FRUUG library; the second copy of each book goes to those Merit Badge holders who have reviewed books for the FRUUG library and who register for the give-away on our site; and the last two copies goes to two people who promise to send us comments on one of the DNS books or any other book in the FRUUG library before the next meeting. If you don't earn one of our give-away copies, Cricket will be on-hand after the meeting to sell you an autographed copy-- or you can bring in your own copy for an autograph!

Not to be outdone, Addison-Wesley has sent us two copies each of "Wireless Security and Privacy," "Internet Site Security," and "Honeypots-- Tracking Hackers." We'll make these extra copies available to FRUUG Library Merit Badge holders at our next meeting. Are you dying to get your hands one one of these hot titles? Check out a copy from the FRUUG library at the meeting. If you send us a review of the book, we'll exchange it for a give-away copy at the next meeting. It's as simple as that!

Finally, we once again have a Gift Certificate to SoftPro Books to give away to a FRUUG member at the meeting.

FRUUG Library Notes

We once again have a huge number of new books for the FRUUG library, along with several give-away copies for this meeting. Remember that give-away copies are available to those who have earned a FRUUG Library Merit Badge by reviewing a book to provide feedback to our publisher friends. The list of new books this month includes:

  • BGP, from O'Reilly & Associates
  • Blogging, Genius Strategies for Instant Web Content, from New Riders
  • DNS & BIND 4th Edition, from O'Reilly & Associates
  • DNS & BIND Cookbook, Solutions and Examples for System Administrators, from O'Reilly & Associates
  • Digital Photography Pocket Guide, from O'Reilly & Associates
  • Dynamic HTML, 2nd Edition, from O'Reilly & Associates
  • A Guide to Forensic Testimony, from Addison-Wesley
  • Honeypots-- Tracking Hackers, from Addison-Wesley
  • Inside Solaris 9, from New Riders
  • Internet Site Security, from Addison-Wesley
  • MacOS X for UNIX Geeks, from O'Reilly & Associates
  • MacOS X, The Missing Manual, Second Edition (Covers Jaguar 10.2), from O'Reilly & Associates
  • Managing Information Security Risks, from Addison-Wesley
  • Object Design Roles, Responsibilities, and Collaborations, a draft manuscript from Addison-Wesley
  • Patterns of Enterprise Application Architecture, a draft manuscript from Addison-Wesley
  • Sendmail Performance Tuning, from Addison-Wesley
  • Test-Driven Development, a draft manuscript from Addison-Wesley
  • Wireless Security and Privacy, from Addison-Wesley

You may check out books using your business card as your library card; you must be on the membership list to check books out. Books are due at the meeting following the one in which they are checked out.

Remember that your FRUUG membership entitles you to discounts on your book orders from both New Riders Publishing and O'Reilly & Associates; refer to the FRUUG Web site for details.

The New Riders discount program has changed; pick up a discount coupon with our secret password at the meeting.

Site Map Recruiter Info
February 15, 2009

February 2008: FRUUG Enters Quiescent Phase
After 27 years running, we're suspending operations.

Future Meetings:
None planned

Site by
Lone Eagle Systems, Inc.,
Hosted courtesy of Indra