Domain Name Server Attack
Before we dive into how you can protect dns against attacks you should understand what dns means.
Domain name server attack. Domain name server amplification attack. Through spikes in network traffic the intent is to make a system unavailable to legitimate users. A domain name server amplification attack dns amplification attack is a sophisticated type of distributed denial of service attack ddos that involves sending massive amounts of incoming data to a server. Many tech people call dns the internet phonebook the three letters stand for domain name system.
They are the path through which internet devices are able to lookup specific web servers in order to access internet content. Domain name system servers are the phonebooks of the internet. A decentralized hierarchical naming system. To perform the attack perpetrators either install malware on user computers take over routers or intercept or hack dns communication.
The attackers sent many icmp ping packets using a botnet to each of the servers. A domain name server dns amplification attack is a popular form of distributed denial of service ddos in which attackers use publically accessible open dns servers to flood a target system with dns response traffic. On october 21 2002 an attack lasting for approximately one hour was targeted at all 13 dns root name servers. What exactly is a domain name server.
The goal of this attack is to create a dos that will saturate the authoritative dns server that hosts the main domain name and finally cause the interruption of all dns record lookups. However because the servers were protected by packet filters which were configured to block all incoming icmp ping packets they did not sustain much damage and there was little. It s an attack that s hard to detect as the queries will come from botnets from infected users who don t even know they re sending these types of. A domain name server dns amplification attack is a popular form of distributed denial of service ddos in which attackers use publicly accessible open dns servers to flood a target system with dns response traffic.
Attacks october 21 2002. The primary technique consists of an attacker sending a dns name lookup request to an open dns server with the source address. A dns attack is an exploit in which an attacker takes advantage of vulnerabilities in the domain name system dns.