Research Paper - Dns Cache Snooping

Full Version: Research Paper - Dns Cache Snooping

GovernmentSecurity.org > System Security > System Hardening

RELiC

May 1 2004, 06:44 AM

QUOTE

Research Paper - DNS Cache Snooping
Luis Grangeia (luis.grangeia at sidestep.pt)
February 2004 ( last revised April 2004)

Abstract

This research paper presents a technical overview of the technique known as DNS cache snooping. Firstly,
a brief introduction to DNS is made followed by a discussion on common misconceptions regarding DNS
sub-systems. Then this relatively unknown technique is introduced, followed by a field study to assert the
overall exposure of the Internet to this threat. Also, a set of devised abuse scenarios that rely on cache
snooping is presented. This paper concludes with recommendations on how to reduce exposure to this
problem, including proposed changes to the BIND DNS server implementation

DNS Cache Snooping (PDF)

CODE

http://community.sidestep.pt/~luis/DNS-Cache-Snooping/DNS_Cache_Snooping_1.1.pdf

Related Files

CODE

http://community.sidestep.pt/~luis/DNS-Cache-Snooping/files/

../

ind0r

May 3 2004, 10:57 AM

thx, I'm just reading :-)

Dinos

May 18 2004, 02:04 PM

Very interesting

Thanks for sharing the information.

I tried a bit in past times, but without success by then.

manu

May 19 2004, 07:43 AM

Good notes dude, Thanks a lot.

Manu

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.