3.3 DNS Flashcards
Explain DNS
A hierarchical naming system that resolves a hostname to an IP address.
Explain DNS Record Types
A: IPv4 host
AAAA: IPv6 host
CNAME: Alias
SRV records: Finds services such as a domain controller
MX: Mail Server
Explain SPF
Sender Policy Framework
This is a text (TXT) record used by DNS to prevent spam and confirm the email has come from the domain it appears to come from.
Explain DMARC.
Domain-based Message Authentication, Reporting and conformance
This is another DNS text (TXT) that is used by Internet Service Providers (ISPs) to prevent malicious email, such as phishing or spear phishing attacks.
Explain DNS Cache
Stores recently resolved DNS requests for later reuse, reducing calls to the DNS server.
Explain Hosts File
This is a flat-file where name and IP pairs are stored on a client.
Often checked before request is sent to DNS server
Explain DNS Server
This normally maintains only the hostnames for domains it is configured to serve.
server is said to be “authoritative” for those domains.
Explain Root Server
DNS nameservers that operate in the root zone. They can also refer requests to the appropriate Top-Level Domain (TLD) server
Explain DNSSEC
Prevents unauthorized access to DNS records on the server. Each DNS record is digitally signed, creating an RRSIG record to protect against attacks
What is DNS Poisoning
When an attacker alters the domain-name-to-IP-address mappings in a DNS system to redirect traffic to a rogue system or perform DoS against a system.
What is DNS Spoofing
Occurs when an attacker sends false replies to a requesting system, beating the real reply from the valid DNS server.
What is DNS Hijacking
AKA DNS Redirection attack
Many ways to perform DNS Hijacking, the most common way we see is used by a captive portal such as a pay-for=use WiFi hotspot.
What is a Homograph Attack
Leverages similarities in character sets to register phony international domain names (IDNs) that appear legitimate to the naked eye.
e.g Latin character “a” is replaced with the Cyrillic character “a” in example.com