SECFND 6: Network Applications

Question 1

DNS Resource Record

Answer 1

RR defines the DNS data types that are stored in the DNS database. SOA, MX, A, AAAA, NS, PTR, CNAME

Question 2

stub DNS resolver

Answer 2

Client device OS

Question 3

DNS recursive resolver

Answer 3

DNS server that processes requests. Queries the authoritative DNS server for RR information

Question 4

Open DNS recursive resolver

Answer 4

Allow queries from all addres (8.8.8.8, etc.)

Question 5

Authoritative DNS Server

Answer 5

Responsible for all domain RR’s. Provide auth responses to DNS recursive resolvers

Question 6

DNS Zones

Answer 6

In addition to being divided into domains, the DNS name space is partitioned into zones to simplify DNS database management..

Zone file is a text file.

Question 7

A record

Answer 7

Maps names to IPv4 addresses

Question 8

AAAA

Answer 8

Map hostnames to IPv6 addresses

Question 9

MX record

Answer 9

Maps DN to mail servers for that domain

Question 10

PTR record

Answer 10

PTR points to a canonical name. The most common use is for implementing reverse DNS lookups, mapping an IP address to the hostname.

Question 11

NS Record

Answer 11

identifies the DNS servers that are responsible (authoritative) for a zone.

Question 12

CNAME record

Answer 12

specify that a domain name is an alias for another domain name, which is the “canonical” domain name.

Question 13

TXT Record

Answer 13

used to associate any arbitrary text with a hostname. Used for DKIM

Question 14

SOA Record

Answer 14

Start of authority. Each zone contains an SOA record. Identifies the name server that is the best source of information for the data within the zone. The SOA record also contains various other parameters that define the behavior of the DNS server.

Question 15

DNS Recursive query steps

Answer 15

1. DNS resolver queries DNS recursor.
2. DNS recursor sends query to root name server.
3. Root name servers send a DNS referral to DNS recursor informing it to ask the gTLD name servers for the .com/.net/,org domain space.
4. DNS recursor sends query to gTLD servers looking for domain name (cisco.com)
5. GTLD servers send DNS referral to DNS recursor informing it to ask the cisco.com name servers about domain name space.
6. DNS recursor sends a query to ns1.cisco.com or ns2.cisco.com
7. Cisco servers send auth DNS response to DNS recursor with A RR info
8. DNS recursor sends a response to the DNS resolver

Question 16

Dynamic DNS

Answer 16

Connects to DDNS provider with unique login name. Service links discovered public IP address with a hostname in the DNS system.

Question 17

URI

Answer 17

All URL’s are URI’s, but not vice versa

Question 18

URL part: Protocol

Answer 18

http, https, ftp, etc.

Question 19

URL part: path

Answer 19

/video. Path typically refers to a file or location on the web server. Like a directory structure.

Question 20

URL part: parameters

Answer 20

aka Query string. ?docid=96673&hl=en. The docid=96673 parameter in this example reference a specific video file in the path. The hl=en parameter specify the language,

Question 21

URL part: named anchor

Answer 21

00h01m15s. Typically the fragment is used to refer to an internal section within a web document. In this case, the fragment means skip to 1 minute and 15 seconds into the video.

Question 22

HTTP referer

Answer 22

Address of previous web page from where a link was followed

Question 23

Cooking info is sent in:

Answer 23

Request header, response header, stored in Client browser

Question 24

Two client scripting languages

Answer 24

JavaScript, VBscript

Question 25

MTA

Answer 25

Mail transport agent (SMTP daemon), email gateway, computer program that transfers email.

Question 26

Groupware server

Answer 26

Mail server that includes calendars and other services

Question 27

MAPI

Answer 27

Used by the MUA to retrieve email. Associated with Exchange/Outlook. Similar to IMAP

Question 28

Three parts of SMTP conversation

Answer 28

Envelope, headers. body

Question 29

SMTP envelope

Answer 29

Specifies the recipient and the sender

Question 30

SMTP header

Answer 30

headers are sent after receiving a 354 (go ahead) SMTP reply code from the SMTP server. The headers contain the following information: sender’s display name and email, the recipient’s display name and email, and the subject and date.

Question 31

helo/ehlo

Answer 31

commands are used to identify the SMTP client to the SMTP server. FQDN or IP address are usually sent as an argument together with HELO/EHLO. Establishes SMTP session with another host

Question 32

SMTP DATA

Answer 32

Message body