@UK PLC customers protected against DNS security bug

Jul 29, 2008

@UK PLC uses a secure DNS server (DJBDNS) that is not affected by the DNS security bug that has been recently announced by the BBC, CNN and other news organisations.

DJBDNS the software that @UK PLC uses for its DNS, has a perfect security record with NO HOLES. The author Professor Dan Bernstein put up a security guarantee in 2001 and there have been no security problems in the last 7 years. The DNS software used by @UK PLC was specifically designed make this known flaw in the DNS protocol difficult to exploit, and is safe against this recent problem.

There are a series of articles by the BBC on this issue
Fix found: http://news.bbc.co.uk/1/hi/technology/7496735.stm
Attacks begin: http://news.bbc.co.uk/1/hi/technology/7525206.stm

@UK PLC hosted websites and domains are not affected by this issue. However your Internet Service Provider may be affected and you can check if they are affected by visiting Dan Kaminsky’s blog at:

This is the blog of Dan Kaminsky the security researcher that found an easy way of exploiting the problem with some common DNS servers, and has a DNS checker on the right hand side.

Once again @UK PLC and its customers are not affected!