Basic HTML version of Foils prepared
May 19 99
Foil 20 DNS Cache Poisoning (3)
From
Computer Crimes: Examples of Network Security attacks Tango Group Internal Technology Seminars --
April 23 99
.
by
Roman Markowski
DNS cache attack affects all versions of BIND and Windows NT Server DNS
Defense
decrease TTL (and performance)
use hard to predict Query ID #
digitally sign DNS records
use SSL / HTTPS for important transactions
protect DNS server
use suspicious activity detection software
©
Northeast Parallel Architectures Center, Syracuse University, npac@npac.syr.edu
If you have any comments about this server, send e-mail to
webmaster@npac.syr.edu
.
Page produced by
wwwfoil
on Mon Aug 16 1999
Basic HTML version of Foils prepared May 19 99
