Jump to content

Cache Poisoning

From ICANNWiki
Revision as of 14:30, 12 July 2021 by Jessica (talk | contribs) (Created page with "'''Cache Poisoning''' is the insertion of false data into recursive name server, which remember previous lookups. The attacker sends fake DNS answers in response to a...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Cache Poisoning is the insertion of false data into recursive name server, which remember previous lookups. The attacker sends fake DNS answers in response to a query and tricks it into thinking the wrong data is correct for a given domain. The server remembers the wrong answer in its cache and provides that wrong answer in future lookups.[1]

Overview

History

Mitigation

Use a randomized source port to reduce the risk of a cache poisoning attack instead of using the same source port number for every DNS query.

References

  1. Frequently Asked Questions on Cache Poisoning and Cross Pollination, IANA
Retrieved from "https://icannwiki.org/index.php?title=Cache_Poisoning&oldid=1325938"