isc发布了一个dns可能遭受攻击的漏洞-CERT VU#800113 DNS Cache Poisoning Issue，联想到新网，万网8月dns被攻击的事件（不确定，但是确实解析不了了），可能是比较严重的。 Summary: A weakness in the DNS protocol may enable the poisoning of caching recurive resolvers with spoofed data. DNSSEC is the only full solution. New versions of BIND provide increased resilience to the attack. Description ：Thanks to recent work by Dan Kaminsky of IOActive, ISC has become aware of [...]