This lecture explores how the naming services DNS and ARP are vulnerable to spoofing attacks. It also considers how we access remote systems, highlights the weaknesses of old tools such as telnet and rlogin, and discusses the effectiveness of SSH as a drop-in replacement for those tools. Finally, it considers the inherent lack of security in the email protocols SMTP, POP3 and IMAP, and examines how TLS has been used to add security to them.

• Lecture video
• Slides (PDF)
• Other resources:
  • “It’s the end of the cache as we know it”: Dan Kaminsky’s BlackHat 2008 presentation (PDF)
  • Short video on the consequences of DNS cache poisoning
  • Statistics on DNSSEC adoption
  • Article on an alternative to DNSSEC: DNS over HTTPS
  • OpenSSH home page
  • 2008 CBC vulnerability in SSH
  • Blog on prevalence of STRIPTLS in 2017