How DNS Attacks Can Stop Even The Most Secured Web Sites

DNS

When the creators of the Internet decided on the protocols that will be used on the network it was meant for scientists and not for the average person.

This is why, in the beginning, numbers were used instead of names and letters.

When you are dealing with scientists and engineers, numbers make just as much sense as letters do.

They are all just symbols that are able to get your point across to another person.

Later, when the Internet started to be used by real people and not just those in academia, the number issue became a problem and a solution was needed very quickly.

What Is DNS?

This is when DNS came into play.

DNS allowed you to type a name in the address bar and go to a destination instead of typing in the IP address.

The letters DNS stand for Domain Name Server.

The job it has is very simple but vital to the way that the Internet is run.

If this piece of software was not created then the Internet would have been adopted by the masses at a very much slower pace, if at all.

The software takes an IP address and translates it to an actual name.

It then alerts other DNS solutions on the network of the name and IP number that it has discovered.

This process then goes on and on.

If we had to type 192.132.23.1 every time we wanted to get to what is now known as Google, there is no way that the Internet would be as much fun and useful as it is now.

There is only one problem with the solution that was created – it was pretty much a hack to solve a particular problem and not part of the original infrastructure.

This is why it remains so vulnerable to this day.

DNS Security Issues

Even a large established web site can have DNS security problems.

Twitter, which is one of the largest social media sites in the world, had their DNS hijacked for several hours by Iranian hackers.

They were able to switch Twitter’s DNS to point to a server of their own choosing.

In the world of DNS attacks, this was a fairly easily one to commit – they just needed to know the right passwords to get in.

This just underscores the problem with how the modern day DNS system works.

Other attacks that can be used to take down a web site include DNS spoofing and DNS cache poisoning.

DNS spoofing and cache poisoning allows a hacker to feed false data to a DNS server that allows them to take over their target.

These attacks have been around for a while but they have proven to still be viable against web sites.

If it still works then there is no need to change it.

The DNS has been updated to a modest degree but it still has a lot of problems that need to be fixed.

Until they are, IT and security people will have to implement their own watch of these settings.

About Lee Munson

Lee's non-technical background allows him to write about internet security in a clear way that is understandable to both IT professionals and people just like you who need simple answers to your security questions.

Trackbacks

  1. […] those numbers into a name that is readable by humans.So what is DNS caching poisoning then?DNS caching poisoning is when someone is able to break into a system where there is a DNS server and make changes to it. […]

  2. […] than it would the actual name Google. This mask is actually done by a service that is called a DNS aka a Domain Name Server. We will not go too far in the explanation of how this works but just […]

Speak Your Mind

*