Sign In
Register
Help
Quote
Research Paper - DNS Cache Snooping
Luis Grangeia (luis.grangeia at sidestep.pt)
February 2004 ( last revised April 2004)
Abstract
This research paper presents a technical overview of the technique known as DNS cache snooping. Firstly,
a brief introduction to DNS is made followed by a discussion on common misconceptions regarding DNS
sub-systems. Then this relatively unknown technique is introduced, followed by a field study to assert the
overall exposure of the Internet to this threat. Also, a set of devised abuse scenarios that rely on cache
snooping is presented. This paper concludes with recommendations on how to reduce exposure to this
problem, including proposed changes to the BIND DNS server implementation
DNS Cache Snooping (PDF)
Luis Grangeia (luis.grangeia at sidestep.pt)
February 2004 ( last revised April 2004)
Abstract
This research paper presents a technical overview of the technique known as DNS cache snooping. Firstly,
a brief introduction to DNS is made followed by a discussion on common misconceptions regarding DNS
sub-systems. Then this relatively unknown technique is introduced, followed by a field study to assert the
overall exposure of the Internet to this threat. Also, a set of devised abuse scenarios that rely on cache
snooping is presented. This paper concludes with recommendations on how to reduce exposure to this
problem, including proposed changes to the BIND DNS server implementation
DNS Cache Snooping (PDF)
http://community.sidestep.pt/~luis/DNS-Cache-Snooping/DNS_Cache_Snooping_1.1.pdfRelated Files
http://community.sidestep.pt/~luis/DNS-Cache-Snooping/files/../
Attached File(s)
-
DNS_Cache_Snooping_1.1.pdf (127.41K)
Number of downloads: 166
MultiQuote
