Basic HTML version of Foils prepared
July 6 99
Foil 82 DNS Cache Poisoning (3)
From
Security Infrastructure fo Electronic Commerce and Internet CPS714 Computational Science Information Track --
June 2 and June 7 99
.
by
Roman Markowski
DNS cache attack affects all versions of BIND and Windows NT Server DNS
Defense
decrease TTL
use hard to predict Query ID #
digitally sign DNS records
use SSL / HTTPS for important transactions
protect DNS server
use suspicious activity detection software
©
Northeast Parallel Architectures Center, Syracuse University, npac@npac.syr.edu
If you have any comments about this server, send e-mail to
webmaster@npac.syr.edu
.
Page produced by
wwwfoil
on Tue Jul 6 1999
