In the past, the most prevalent types of hacking attacks were “server side”. There were lots of vulnerabilities and security weaknesses in software (IIS, Apache, Windows vulnerabilities etc) that could be easily exploited by hackers to gain remote access to public servers from the Internet without much effort.
The big players in the software industry and in the security protection area had made vast advancements in protecting their products (secure coding) and in developing advanced mechanisms to protect I.T systems and the perimeter of networks. Thus, “server side” attacks are kind of rare nowadays.
Hackers, who are usually one step ahead of security professionals most of the time, have therefore found alternative ways to attack systems and gain access to sensitive data. “Client Side” is now the most frequent attack channel which gives access to internal networks for malicious attackers.
Client-Side Attacks go after weaknesses in Desktop applications such as browsers, office applications, media players, email clients etc. Some critical recent client-side vulnerabilities were found in Java, Adobe Flash Player, Internet Explorer, Adobe Reader etc.
Websites that distribute malware, emails that contain phishing links, downloaded pirated software, attachments in emails, links placed in social networks etc are some of the methods used by hackers to deliver their “client side attacks” and are usually very successful in gaining access to client’s machines and hence inside protected networks.
One simple and effective way to protect enterprise and home users from client-side attacks is OpenDNS. Taken from their website:
“…OpenDNS is obsessed with inventing new methodologies to eradicate malware, botnets and phishing through DNS, and use the system to intelligently route our users around it. Not to mention speed up the Internet and move the state of the art for the Domain Name System forward.”
I know that there is no 100% security, but using OpenDNS will enhance protection of users a lot. Basically users need to change their DNS settings on computers (or on their Internet router) and use the OpenDNS IP addresses which are:
208.67.222.222
208.67.220.220
If a user is tricked into going to a phishing site or browses accidentally to a malicious website, OpenDNS will block the connection when a DNS request is made from the user to resolve the IP address of the malicious site. With a database of millions of harmful domains and websites and with phishing intelligence from around the world, OpenDNS will block access to such malicious content before even starting the network communication.
Saeed says
Hi Harris,
Well, you are right but sometimes i have seen these free DNS would headache because of the attackers directly hit the DNS servers and this may effect of your network.
What you say?
Also, i sent an email for books discounted but i have not seen any reply yet from your end.
Regards,
Saeed
BlogAdmin says
Hi Saeed,
OpenDNS is not like the other free DNS services that you know. They use cloud technology to host all their DNS services to avoid DDoS attacks.
Can you please resend me the email about discount you are referring please. It might have been lost. Sorry about that.
Jeff Spradling says
Thanks, Harris. Great advice for home users that don’t have an ASA with a Botnet subscription!