ACTION-294: Review threat trees draft wrt dns poisoning

Email finally tied back to action item 294

In the threat trees DNS poisoning "compromised DNS" is listed under
luring attacks.

It is my thinking that an obscured DNS listing falls into a luring
attack. With DNS poisoning a user may not have a clue. User types in an
address or clicks a "trusted" bookmark that they have used before and
user agent goes to a
malware infected site, the user is not lured to the site.

Bill D.

Received on Friday, 12 October 2007 13:03:35 UTC