DNS cache poisoning: Explanation
DNS cache poisoning, also known as DNS spoofing, is an attack that occurs when malicious or false data is inserted into a DNS cache server. This data corrupts the data stored in the server, causing it to respond to requests for a domain name with the wrong IP address. In other words, valid DNS requests that are received by a corrupted server will be answered with incorrect information, such as sending a user to the wrong website or to a malicious one. DNS spoofing is dangerous because it can manipulate information on the Internet allowing criminals to commit cybercrimes. It can also be used to redirect web traffic to sites that contain malicious software, leading to data breaches and other security threats.
Here are some interesting DNS terms you may not know yet. They are helpful both for beginner DNS administrators and more advanced ones.
Dynamic DNS automatically updates your IP address every time it is replaced. The Internet Service Providers (ISPs) are commonly changing it since it is easier for them to manage their large networks. For that reason, it is really useful to implement Dynamic DNS, for example, for your CCTV cameras for surveillance.
If you want to boost the DNS resolution process of your domain, you should consider Anycast DNS. It is a routing mechanism that works by placing one IP address into several name servers that are positioned in different points of the world. That way, the DNS request (DNS query) takes the shortest path, and the closest server provides the needed data.
DNSSEC (Domain Name System Security Extensions) brings extra protection to your DNS (Domain Name System). It applies cryptographic authentication for the DNS data (DNS records) that goes around the Internet. Besides, Domain Name System Security Extensions provide insurance for the origin of the DNS data and its integrity.