A fantastic explanation of the design flaw in DNS that Dan Kaminsky discovered:

How do you fix a fundamental design flaw that affects the entire Internet? Answer: You can’t. So you don’t. Instead, you find a way to make the design flaw much, much harder to exploit.

Still searching for an explanation for the patch.

Isn’t it amazing that such a massive design flaw is only now being discovered?