In Progress [UPS-291] cPanel DNSOnly: SAD DNS / DNS Spoofing protection

MindServer

Well-Known Member
Mar 18, 2020
176
27
28
Spain
cPanel Access Level
Root Administrator
Hi,

Today KernelCare writed a post in her blog where talk about SAD DNS. I have various web servers (with WHM/cPanel) and one Cluster DNS (whith cPanel DNSOnly).

"WHM/cPanel" and "cPanel DNSOnly" have protection against SAD DNS / DNS Spoofing?. Or I need do anything for protect the domains and DNS against this attacks?.

I have:

Web servers: CloudLinux 7 + WHM/cPanel
Cluster DNS: CentOS 7 + cPanel DNSOnly

All updated to latest version.

Thank you very much. Have a nice day.
 
Last edited:

cPanelChristine

Technical Analyst
Staff member
Aug 10, 2018
57
11
83
Houston, TX
cPanel Access Level
Root Administrator
Geretings.

We were not able to locate the KernelCare post that you mentioned, though we do know that there is currently a known vulnerability that is being investigated under these links:


We filed an internal case for tracking as well, which I will update this post's title with. For now it would appear that we are awaiting on an update on these two posts to see what the next course of action is.
 
  • Like
Reactions: MindServer

MindServer

Well-Known Member
Mar 18, 2020
176
27
28
Spain
cPanel Access Level
Root Administrator
Geretings.

We were not able to locate the KernelCare post that you mentioned, though we do know that there is currently a known vulnerability that is being investigated under these links:
Thank you very much. This is the post, for you can check additional information: KernelCare Patches for SAD DNS Are On The Way

Most of us use CloudLinux 7 and CentOS 7, the vulnerabily affect to this OS?.

I hope this will be solved soon before have problems. Have a nice day.
 

cPanelChristine

Technical Analyst
Staff member
Aug 10, 2018
57
11
83
Houston, TX
cPanel Access Level
Root Administrator
Greetings,

The vulnerability appears to affect the kernel from what we have found so far. It may be worth mentioning that there are some suggestions on the bug report here that may help with getting around the problem. Unless this is actively causing issues, we would recommend waiting on updates.
 
  • Like
Reactions: MindServer