Dan Kaminsky (English Wikipedia)

Vixie, Paul (July 14, 2008). "Not a Guessing Game". Circleid.com. Retrieved January 25, 2013.
"Security Researcher Dan Kaminsky Has Died". CircleID. April 24, 2021. Retrieved April 24, 2021.

darkreading.com

"Kaminsky Issues Developer Tool To Kill Injection Bugs". Dark Reading. June 14, 2010.

doxpara.com

"An Astonishing Collaboration". DoxPara Research. July 9, 2008. Archived from the original on July 14, 2008. Retrieved June 14, 2021.
"Ow My Toe". DoxPara Research. July 11, 2008. Archived from the original on July 15, 2008. Retrieved June 14, 2021.

ds9a.nl

"Measures to prevent DNS spoofing". Ds9a.nl. November 2, 2006. Retrieved January 25, 2013.

duo.com

Rashid, Fahmida Y. (April 23, 2018). "Hacker History: How Dan Kaminsky Almost Broke the Internet". Duo.com. Retrieved April 28, 2021.

finalsite.net

resources.finalsite.net

"GENESIS, The St. Ignatius College Preparatory Magazine" (PDF). Spring 2022.

h-online.com

Ries, Ulie (July 31, 2009). "Crackers publish hackers' private data". heise online. Retrieved July 31, 2009.

iana.org

"IANA — DNSSEC Project Archive - Launch TCR Selection". www.iana.org.

infoworld.com

McMillan, Robert (April 19, 2008). "EarthLink redirect service poses security risk, expert says". InfoWorld.

internethalloffame.org

"INTERNET HALL of FAME - Dan Kaminsky". Internet Hall of Fame. ISOC. December 14, 2021.

invisibledenizen.org

blog.invisibledenizen.org

"Kaminsky's DNS Issue Accidentally Leaked?". Invisible Denizen blog. July 21, 2008. Retrieved July 30, 2008.

libsyn.com

hw.libsyn.com

"Network Security podcast – Episode 7". hw.libsyn.com. Archived from the original on January 29, 2011. Retrieved January 12, 2022.

livejournal.com

beezari.livejournal.com

"DNS bug leaks by matasano". beezari's LiveJournal. July 22, 2008. Archived from the original on September 17, 2008. Retrieved July 30, 2008.

lwn.net

"Dan Kaminsky Discovers Fundamental Issue In DNS: Massive Multivendor Patch Released (Securosis.com) [LWN.net]". lwn.net.

networkworld.com

Messmer, Ellen (July 8, 2008). "Major DNS flaw could disrupt the Internet". Network World. Archived from the original on February 13, 2009. Retrieved June 14, 2021. "We worked with vendors on a coordinated patch," said Kaminsky, noting this is the first time such a coordinated multi-vendor synchronized patch release has ever been carried out. Microsoft, Sun, ISC's DNS Bind, and Cisco have readied DNS patches, said Kamisnky. "The patch was selected to be as non-disruptive as possible." ... Lack of an applied patch in the ISP infrastructure would mean "they could go after your ISP or Google and re-direct them pretty much wherever they wanted." Both current and older versions of DNS may be vulnerable, Kaminsky says, and patches may not be available for older DNS software. He says Yahoo was vulnerable because it uses an older version of BIND but had committed to upgrading to BIND 9.0.

nytimes.com

Perlroth, Nicole (April 27, 2021). "Daniel Kaminsky, Internet Security Savior, Dies at 42". The New York Times. Archived from the original on April 29, 2021. Retrieved April 27, 2021.

portswigger.net

Walker, James (April 26, 2021). "Dan Kaminsky: Tributes pour in for security researcher who died after short illness". The Daily Swig. Retrieved April 28, 2021.

pwnies.com

"Pwnie Awards 2008". pwnies.com. Archived from the original on May 6, 2021. Retrieved April 28, 2021.

recursion.com

"Interpolique Home Page". Archived from the original on June 18, 2010.

seattlepi.com

Lathrop, Daniel; Shukovsky, Paul (August 3, 2008). "Seattle security expert helped uncover major design flaw on Internet". Seattle Post-Intelligencer.

securityweek.com

"Security Researcher Dan Kaminsky Passes Away". Security Week. Wired Business Media. April 24, 2021. The cybersecurity world woke up Saturday to news of the sudden passing of Dan Kaminsky, a celebrated hacker who is widely credited with pioneering research work on DNS security.

securosis.com

Mogull, Rich (July 8, 2008). "Dan Kaminsky Discovers Fundamental Issue In DNS: Massive Multivendor Patch Released". securosis. Archived from the original on July 11, 2008. Retrieved June 14, 2021.
"Securosispublications - Article" (PDF). Archived from the original (PDF) on August 27, 2008.

semiaccurate.com

Rodney (August 2, 2009). "Dan Kaminsky Feels a disturbance in The Internet". SemiAccurate. Retrieved January 25, 2013.

skullsecurity.org

Bowes, Ronald (March 30, 2009). Scanning for Conficker with Nmap. Skullsecurity.org. Archived from the original on April 2, 2009. Retrieved March 31, 2009.

softpedia.com

news.softpedia.com

Constantin, Lucian (July 30, 2009). "Security Gurus 0wned by Black Hats". Softpedia. Retrieved April 28, 2021.

techtarget.com

searchsecurity.techtarget.com

Mimoso, Michael S. (April 14, 2008). "Kaminsky on DNS rebinding attacks, hacking techniques". Search Security. Retrieved May 19, 2008.

tenablesecurity.com

blog.tenablesecurity.com

Asadoorian, Paul (April 1, 2009). Updated Conficker Detection Plugin Released. Tenable Security. Archived from the original on September 26, 2010. Retrieved April 2, 2009.

theregister.co.uk

Goodin, Dan (March 30, 2009). "Busted! Conficker's tell-tale heart uncovered". The Register. Retrieved March 31, 2009.
Goodin, Dan (July 29, 2009). "Security elite pwned on Black Hat eve". The Register. Retrieved July 31, 2009.

theregister.com

Goodin, Dan (July 30, 2009). "Wildcard certificate spoofs web authentication". The Register.

washingtonpost.com

blog.washingtonpost.com

Krebs, Brian (April 30, 2008). "More Trouble With Ads on ISPs' Error Pages". The Washington Post. Archived from the original on May 3, 2011. Retrieved May 19, 2008.

web.archive.org

Norton, Quinn (November 15, 2005). "Sony Numbers Add Up to Trouble". Wired. Archived from the original on April 23, 2008. Retrieved May 19, 2008.
McFeters, Nathan (April 21, 2008). "ToorCon Seattle 2008: Nuke plants, non-existent sub domain attacks, muffin diving, and Guitar Hero | Zero Day". ZDNet. Archived from the original on August 1, 2008. Retrieved January 25, 2013.
Krebs, Brian (April 30, 2008). "More Trouble With Ads on ISPs' Error Pages". The Washington Post. Archived from the original on May 3, 2011. Retrieved May 19, 2008.
Messmer, Ellen (July 8, 2008). "Major DNS flaw could disrupt the Internet". Network World. Archived from the original on February 13, 2009. Retrieved June 14, 2021. "We worked with vendors on a coordinated patch," said Kaminsky, noting this is the first time such a coordinated multi-vendor synchronized patch release has ever been carried out. Microsoft, Sun, ISC's DNS Bind, and Cisco have readied DNS patches, said Kamisnky. "The patch was selected to be as non-disruptive as possible." ... Lack of an applied patch in the ISP infrastructure would mean "they could go after your ISP or Google and re-direct them pretty much wherever they wanted." Both current and older versions of DNS may be vulnerable, Kaminsky says, and patches may not be available for older DNS software. He says Yahoo was vulnerable because it uses an older version of BIND but had committed to upgrading to BIND 9.0.
Mogull, Rich (July 8, 2008). "Dan Kaminsky Discovers Fundamental Issue In DNS: Massive Multivendor Patch Released". securosis. Archived from the original on July 11, 2008. Retrieved June 14, 2021.
"Network Security podcast – Episode 7". hw.libsyn.com. Archived from the original on January 29, 2011. Retrieved January 12, 2022.
"Securosispublications - Article" (PDF). Archived from the original (PDF) on August 27, 2008.
"An Astonishing Collaboration". DoxPara Research. July 9, 2008. Archived from the original on July 14, 2008. Retrieved June 14, 2021.
"Ow My Toe". DoxPara Research. July 11, 2008. Archived from the original on July 15, 2008. Retrieved June 14, 2021.
"DNS bug leaks by matasano". beezari's LiveJournal. July 22, 2008. Archived from the original on September 17, 2008. Retrieved July 30, 2008.
"Pwnie Awards 2008". pwnies.com. Archived from the original on May 6, 2021. Retrieved April 28, 2021.
Bowes, Ronald (March 30, 2009). Scanning for Conficker with Nmap. Skullsecurity.org. Archived from the original on April 2, 2009. Retrieved March 31, 2009.
Asadoorian, Paul (April 1, 2009). Updated Conficker Detection Plugin Released. Tenable Security. Archived from the original on September 26, 2010. Retrieved April 2, 2009.
"Interpolique Home Page". Archived from the original on June 18, 2010.

wired.com

Norton, Quinn (November 15, 2005). "Sony Numbers Add Up to Trouble". Wired. Archived from the original on April 23, 2008. Retrieved May 19, 2008.
Davis, Joshua (November 24, 2008). "Secret Geek A-Team Hacks Back, Defends Worldwide Web". Wired. ISSN 1059-1028. Retrieved May 1, 2021.
Zetter, Kim (July 29, 2009). "Real Black Hats Hack Security Experts on Eve of Conference". Wired.com. Retrieved July 31, 2009.

blog.wired.com

Singel, Ryan (April 19, 2008). "ISPs' Error Page Ads Let Hackers Hijack Entire Web, Researcher Discloses". Wired. Retrieved May 19, 2008.

worldcat.org

search.worldcat.org

Davis, Joshua (November 24, 2008). "Secret Geek A-Team Hacks Back, Defends Worldwide Web". Wired. ISSN 1059-1028. Retrieved May 1, 2021.

yp.to

cr.yp.to

"DNS forgery". Cr.yp.to. Retrieved January 25, 2013.

zdnet.com

blogs.zdnet.com

McFeters, Nathan (April 21, 2008). "ToorCon Seattle 2008: Nuke plants, non-existent sub domain attacks, muffin diving, and Guitar Hero | Zero Day". ZDNet. Archived from the original on August 1, 2008. Retrieved January 25, 2013.