Section 4 Flashcards
DKIM (DomainKeys Identified Mail)
Adds a digital signature to emails to verify that the content has not been altered and was sent from an authorized domain.
SPF (Sender Policy Framework)
Specifies which mail servers are authorized to send emails on behalf of a domain by checking the sending server’s IP address.
DMARC (Domain-based Authentication, Reporting & Conformance)
Determines the disposition of emails (accept, quarantine, or reject) based on SPF and DKIM results.
TCP (Transmission Control Protocol)
- Connection-oriented
- Reliable delivery with error-checking and retransmission
- Sequencing of data
- Slower due to overhead
- Used for applications where reliability is crucial (e.g., HTTP, FTP, email)
UDP (User Datagram Protocol)
- Connectionless
- Unreliable delivery, no error-checking
- No sequencing or flow control
- Faster due to lower overhead
- Used for applications where speed is more important than reliability (e.g., streaming, VoIP, DNS)
What are common TCP ports?
- 80 - HTTP
- 443 - HTTPS
- 25 - SMTP
- 23 - Telnet
- 22 - SSH
- 20/21 - FTP
- 110 - POP3
- 143 - IMAP
- 3389 - RDP
Deauthentication
A type of Denial-of-Service (DoS) attack targeting Wi-Fi networks. It involves sending spoofed deauthentication frames to disconnect a device from the network. This disrupts connectivity and can be used as a precursor to other attacks, like setting up a rogue access point. Mitigation includes using WPA3, 802.11w (management frame protection), and monitoring the network for unauthorized activity.