Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

Security+ Cram review > 3.3 DNS > Flashcards

3.3 DNS Flashcards

1
Q

Explain DNS

A

A hierarchical naming system that resolves a hostname to an IP address.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Explain DNS Record Types

A

A: IPv4 host
AAAA: IPv6 host
CNAME: Alias
SRV records: Finds services such as a domain controller
MX: Mail Server

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Explain SPF

A

Sender Policy Framework

This is a text (TXT) record used by DNS to prevent spam and confirm the email has come from the domain it appears to come from.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Explain DMARC.

A

Domain-based Message Authentication, Reporting and conformance

This is another DNS text (TXT) that is used by Internet Service Providers (ISPs) to prevent malicious email, such as phishing or spear phishing attacks.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Explain DNS Cache

A

Stores recently resolved DNS requests for later reuse, reducing calls to the DNS server.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Explain Hosts File

A

This is a flat-file where name and IP pairs are stored on a client.
Often checked before request is sent to DNS server

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Explain DNS Server

A

This normally maintains only the hostnames for domains it is configured to serve.
server is said to be “authoritative” for those domains.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Explain Root Server

A

DNS nameservers that operate in the root zone. They can also refer requests to the appropriate Top-Level Domain (TLD) server

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Explain DNSSEC

A

Prevents unauthorized access to DNS records on the server. Each DNS record is digitally signed, creating an RRSIG record to protect against attacks

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What is DNS Poisoning

A

When an attacker alters the domain-name-to-IP-address mappings in a DNS system to redirect traffic to a rogue system or perform DoS against a system.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What is DNS Spoofing

A

Occurs when an attacker sends false replies to a requesting system, beating the real reply from the valid DNS server.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is DNS Hijacking

A

AKA DNS Redirection attack

Many ways to perform DNS Hijacking, the most common way we see is used by a captive portal such as a pay-for=use WiFi hotspot.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What is a Homograph Attack

A

Leverages similarities in character sets to register phony international domain names (IDNs) that appear legitimate to the naked eye.

e.g Latin character “a” is replaced with the Cyrillic character “a” in example.com

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

Security+ Cram review (5 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions