Noticed something funny happening yesterday with DNS, it was only for a short amount of time, but it occurred on 3 different systems. For example when I went to google.com, it
was redirected to a sedo.com search page. My first thought was that google had not renewed their domain in time which happened with their google.de domain. Thinking nothing of
it, after a couple of minutes the symptoms were gone, until today.

My security feeds today had numerous stories about the root dns servers being hacked. There have been a couple of cases going back to the 80′s written about in
Clifford Stoll’s book, the Cuckoo’s Egg where hackers targeted the root servers. These servers are seen as trophy win, you get into these, you get into the backbone of the
internet, hence its alluring appeal. Naturally these servers need to be as secure as possible. Recently, Sun were commissioned to install Solaris 10 for the ISC F-ROOT server
f.root-servers.net (192.5.5.241).

The attack against the servers was a DDoS (Distributed Denial of Service), this consists of using thousands of zombie machines sending hundred of thousands of requests to try to
overwhelm them and deny it from delivering the service it is designed to deliver. In this instance, the servers stood up against the attack.

Just another day in the internet.