Network Security Intro and DNS Flashcards
What do we consider a “network adversary” ?
> can read messages addressed to it
can send spoof addresses to send arbitrary values
knows all protocol details
What are the typical adversaries on the internet?
> single end-user computers
ISPs
Infected routers
Bot nets
What is the main function of DNS?
to map host names to IP addresses
What are zones?
administrative spaces
What server types are there in DNS?
primary, secondary, local name resolvers, forwarding
What port and protocol does zone transfer use?
TCP on port 53
How do DNS servers sync with each other?
zone transfer
What is the name and value of a A/AAAA DNS record?
name is a hostname, value is the IP address
what is the name and value of a CNAME DNS record?
Name is an alias name for the canonical name
Value is a canonical name
What is the name and value of a NS DNS record?
Name is a domain, Value is the hostname of the authoritative name server it belongs to
What is the name and value of a HINFO DNS record?
Name is the hostname, Value is the host hardware and OS
What is the name and value of a MX DNS record?
value is the name of the mail server associated with name.
What is the name and value of a PTR DNS record?
Value is the domain name associated with the IP address.
What does TTL stand for?
Time To Live
How do we distinguish multiple DNS requests?
Query IDs (QID)