Term
|
Definition
| fully-qualified hose name |
|
|
Term
|
Definition
| when either the FQHN or IP address are checked in the DNS table |
|
|
Term
| What does the OS do when it needs the IP address of a host name that isn't in the table. |
|
Definition
| It sends out a DNS query to the nameservers, one at a time. |
|
|
Term
| What happens with the nameserver reply? |
|
Definition
| The OS trusts the answer and updates the DNS cache table with the information that was received. |
|
|
Term
| What happens in DNS cache poisoning? |
|
Definition
| The information in the DNS cache is incorrect |
|
|
Term
| How does DNS cache poisining occur? |
|
Definition
1)OS received the wrong information to its initial query
2)The OS contacted a 'trusted' DNS server that may have been comprimised |
|
|
Term
| What are some of the intended effects of DNS poisoning? |
|
Definition
1)MiTM attacks
2)Route all info meant for P1 to P2 |
|
|
Term
| What are some ways to remedy the DNS cache poisoning? |
|
Definition
1)Reboot the PC
2)Clear the DNS cache
3)Verify all entries in the DNS cache files
4)tolerate some inefficiency (have scheduled cleanups) |
|
|
