User Account

All Pages

Relevance and protection regarding dns attacks, Computer Networking

Assignment Help:

Relevance and Protection regarding DNS Attacks

While discussing about the relevance and protection of the database, there are many things which need to consider. Almost, may of the issues be able to be addressed with the new updated version or can say the new release of bind.  But according to menandmice.com, the threat is still real:

“A lot of other alarming surveys are available on this website “

Another suitable solution can be the DNS SEC, which is a proposition for secure DNS transactions. Although, this approach generally solves almost all the protocol problems. But because of backward compatibility reason, sometimes, this is not implemented and hence the other alternatives are needed to be discovered by the current network administrator. In order to save or can say to secure the group of servers or simple the DNS; there are many alternatives which can be opted.

Following are measures can be taken in order to escape form the above stated problems of can say the issues

  • In order to prevent spoofing, recursive queries need to be controlled and hence should be forbidden.
  • Maximum updating of that BIND is good hence this process hold be incremented as many as possible.
  • Managing  all the servers in the single and same subnet not only increase the effort for hard management but it also results in the single point failure problem, which need to be overcome by dividing the server in to different subnets. This happens same in the case of routers as well as leased lines.
  • Restrict the possible queries and the possible hosts who are allowed to query to the minimum.

 

While discussing about the processing of the DNS, there is one specific service which is used to synchronize with the primary server is the request (AXFR).  In real since, this services can be hacked in order to get the required information regarding zone transfer and hence all the data of the current DNS can be accessed. This will allow the hacked to gather or can say collect all the associated information regarding the victim’s network. In order to protect this kind of hacking, the good way is to put this feature off in order to restrict it to specific host.

There is another best alternative which can be adopted in order to protect the DNs is the mechanism of Divide and conquer strategy used in the DNS architecture.  The main principal of this strategy is generally contains two major process. The initial one divides or can say diverges the Domain name System (DNS system in order to result in to two parts, out of which the one perform the function of mapping which will be from name to address and the other that is the second part will perform the process for the requesting the incoming which are generally from the internal or can say from the host which are trusted. This is the reason, in the case of external Domain Name System, if the hacked process is applied to external DNS, to the internal hosts,the service provider won’tbe affected at least.

Related Discussions:- Relevance and protection regarding dns attacks

State the congestion avoidance process, State the congestion avoidance proc...

State the congestion avoidance process Notifies the source that congestion avoidance process should be initiated where applicable for traffic in the opposite direction of the r

Characteristics of the user private group scheme, Question: a) The cpi...

Question: a) The cpio utility has three operating modes. What are they? b) The characters of the permission string are broken up into three groups of three characters. Ex

How is route table populated by rip protocol, How is route table populated ...

How is route table populated by RIP protocol?

Packet cost - network layer and routing , Packet  Cost Both  distance ...

Packet  Cost Both  distance vector and link  state  routing  are lowest  algorithms. Tow factors  govern  how  cost is applied to packets  in determines  a route. Cost  is a

Standard ip access-list use as test criteria, What does a Standard IP Acces...

What does a Standard IP Access-list use as test criteria Ans) Standard IP access list use only source address.

What is ipv6 addressing, QUESTION (a) What are the problems with IPv4 o...

QUESTION (a) What are the problems with IPv4 on today's Internet and how does IPv6 solve these problems? (b) Describe at least three ways in which IPv6 is more efficient tha

Network service model - network layer and routing, Network Service Model ...

Network Service Model The network  service  model  defines  the characteristics of end to end  transport of data between  one edge of the  network  to the  other  that is betwe

Sequence number - transport layer, Sequence Number After  the bytes...

Sequence Number After  the bytes have been numbered TCP assigns a sequence number to each segment   that is  being sent. These sequence number for each segment  is the numb

Analyze snort or pcap data from a public wifi hotspot, The project idea is ...

The project idea is : Analyze Snort or PCAP data from a public WIFI hotspot (describe traffice seen and what it is, protocols, ports, etc). This is what is expected. Initially r

Layer, what is end to end and host to host?

what is end to end and host to host?

Write Your Message!

Captcha
Order Assignment

Featured Services

Order Now

Popular Subjects

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +91-977-207-8620

Phone: +91-977-207-8620

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd