{"id":804,"date":"2008-07-30T23:16:17","date_gmt":"2008-07-30T15:16:17","guid":{"rendered":"http:\/\/blog.smallken.ink\/2008\/07\/30\/linux\/804.html"},"modified":"2008-07-30T23:30:17","modified_gmt":"2008-07-30T15:30:17","slug":"%e6%9e%b6%e8%a8%addns-%e5%a6%82%e4%bd%95%e9%81%bf%e5%85%8d-dns-cache-poisoning-%e5%95%8f%e9%a1%8c","status":"publish","type":"post","link":"https:\/\/blog.smallken.site\/?p=804","title":{"rendered":"\u67b6\u8a2dDNS \u5982\u4f55\u907f\u514d DNS Cache Poisoning \u554f\u984c?"},"content":{"rendered":"<p>\u5e7e\u500b\u79ae\u62dc\u524d\u6bcf\u500b\u7cfb\u7d71\uff0c\u5305\u62ecMac,Windows,Unix,Linux&#8230;\u7b49\u7b49\uff0c\u90fd\u79d8\u5bc6\u5730\u4fee\u5fa9\u4e86<a href=\"http:\/\/amd.co.at\/dns.htm\">DNS cache poisoning<\/a> \u554f\u984c\uff0c\u8a18\u5f97 WindowsXP \u6709\u4e00\u6b21\u66f4\u65b0\u5427? \u9019\u662f\u56e0\u70ba DNS\u67b6\u69cb\u4e0a\u6709\u4e00\u4e9b\u8001\u554f\u984c\uff0cDNS \u7684\u904b\u4f5c\u662f\u9019\u6a23\u7684,DNS \u662f\u4e00\u500b\u968e\u5c64\u5f0f\u7684\u67b6\u69cb\uff0c\u6bcf\u4e00\u6b21\u505aDNS\u56de\u61c9\u6642\u90fd\u8981\u5f9e\u6e90\u982d\u958b\u59cb\u8a62\u554f\u56de\u4f86\uff0c\u4f8b\u5982\u5f9e . \u2192 .tw \u2192 .nctu.tw \u2192 .cool.nctu.edu.tw \u2192 ken.cool.nctu.edu.tw\uff0c\u9019\u6a23\u8d70\u4e00\u904d\u624d\u80fd\u554f\u5230ken.cool.nctu.edu.tw \u7684 IP\uff0c\u5982\u679c\u6bcf\u6b21\u90fd\u8981\u9019\u6a23\u554f\u4e00\u904d\uff0c\u800c\u4e14\u53ef\u80fd\u524d\u5341\u79d2\u9418\u5c31\u6709\u4eba\u554f\u904e ken.cool.nctu.edu.tw \u9019\u500bIP\u662f\u4ec0\u9ebc\u4e86? \u6240\u4ee5\u9084\u9700\u8981\u518d\u91cd\u6e90\u982d\u518d\u8a62\u554f\u4e00\u904d\u55ce? \u800c\u4e14\u901a\u5e38\u7db2\u7ad9\u7684IP\u90fd\u5927\u4e0d\u6703\u8b8a\u5427\uff0c\u6240\u4ee5\u5c31\u6709\u8a2d\u8a08\u4e86 cache \u6a5f\u5236\uff0c\u4e5f\u5c31\u662f\u7b2c\u4e00\u500b\u4eba\u554f\u904e\u7684\u7d50\u679c\uff0c\u5728\u9019\u53f0 DNS \u5148\u8a18\u8d77\u4f86\uff0c\u5982\u679c\u4e0b\u4e00\u500b\u4eba\u518d\u554f\u5230\u540c\u6a23\u7684\u554f\u984c\u5c31\u76f4\u63a5\u628a\u7b54\u6848\u544a\u8a34\u5c0d\u65b9\uff0c\u9019\u6a23\u5c31\u5feb\u591a\u4e86\uff0ccache \u4fdd\u5b58\u6642\u9593\u53ef\u8a2d\u5b9a\uff0c\u77ed\u5c0f\u5247\u4e94\u5206\u9418\uff0c\u9577\u5247\u4e09\u5929\u90fd\u6709\uff0ccache \u8cc7\u6599\u662f\u4e00\u500b\u554f\u984c\uff0c\u90a3\u53e6\u5916\u4e00\u500b\u554f\u984c\u5c31\u51fa\u5728\u4e92\u76f8\u8a62\u554f\u7684\u9019\u968e\u5c64\u67b6\u69cb\u4e2d\u90fd\u6c92\u6709\u4e00\u500b\u5f88\u5f37\u800c\u6709\u529b\u7684\u8a8d\u8b49\u6a5f\u5236\uff0c\u6240\u4ee5\u5982\u679c\u4e2d\u9593\u6709\u4e00\u53f0IP\u88ab\u5077\u63db\u6389\u4e86\uff0c\u88ab\u5f15\u5c0e\u904e\u53bb\u7684IP\u662f\u6709\u554f\u984cDNS Server\uff0c\u88e1\u9762\u6709\u53ef\u80fd\u8b93\u4f60\u5f97\u5230\u932f\u8aa4\u7684IP\uff0c\u4e0a\u5230\u932f\u8aa4\u7684\u7db2\u7ad9\uff0c\u60e1\u610f\u7684\u7db2\u7ad9\uff0c\u5982\u679c\u628a\u7db2\u7ad9\u5167\u5bb9\u4e5f\u6539\u6210\u8ddf\u539f\u4f86\u7684\u5f88\u50cf\uff0c\u90a3\u4f60\u5c31\u4e0d\u6703\u61f7\u7591\u4e86\u5427\uff0c\u7167\u6a23\u8f38\u5165\u5e33\u865f\u3001\u5bc6\u78bc\uff0c\u9019\u6a23\u4f60\u7684\u8cc7\u6599\u5c31\u88ab\u5077\u8d70\u4e86\uff0c\u4e0d\u8981\u4ee5\u70ba\u4f60\u4e0a\u7684 yahoo \u7db2\u7ad9\u7db2\u5740\u5c0d\u90a3\u5c31\u662f\u5c0d\u4e86\u5594\uff0c\u7db2\u5740\u662f\u7d93\u904eDNS\u89e3\u8b6f\u904e\u624d\u5f97\u5230IP\uff0c\u5982\u679cIP\u662f\u932f\u7684\u800c\u7db2\u7ad9\u53c8\u9577\u5f97\u5f88\u50cf\uff0c\u9019\u662f\u6709\u53ef\u80fd\u7684\uff0c\u6211\u73fe\u5728\u70ba\u4e86\u8b49\u660e\u60a8\u6240\u4e0a\u7684\u7db2\u7ad9\u7db2\u5740\u8ddf\u5be6\u969b\u7684IP\u662f\u7121\u95dc\u7684\uff0c\u6211\u5728\u6211\u7684\u7db2\u57df vblog.tw \u8a2d\u5b9a\u4e86\u4e00\u7d44\u8a2d\u5b9a yahoo.vblog.tw \u6307\u5b9a tw.yahoo.com \u7684IP 202.43.195.52\uff0c\u4f60\u9ede\u770b\u770b\u7db2\u5740: <a href=\"http:\/\/yahoo.vblog.tw\" target=\"_blank\">http:\/\/yahoo.vblog.tw<\/a> \uff0c\u4f60\u6c92\u770b\u932f\uff0c\u96d6\u7136 yahoo.vblog.tw \u4e0d\u662f tw.yahoo.com\uff0c\u4f46\u662f\u6211\u628ayahoo.vblog.tw \u7684IP\u8a2d\u5b9a\u6210 tw.yahoo.com \u4e00\u6a23\u7684IP\uff0c\u6240\u4ee5\u4f60\u770b\u7684\u7db2\u9801\u5167\u5bb9\u6703\u662f\u540c\u6a23\u7684<img loading=\"lazy\" decoding=\"async\" style=\"border-top-width: 0px; border-left-width: 0px; border-bottom-width: 0px; border-right-width: 0px\" height=\"510\" alt=\"65\" src=\"http:\/\/blog.smallken.ink\/wp-content\/uploads\/2008\/07\/65.png\" width=\"500\" border=\"0\"\/> <\/p>\n<p>\uff0c\u6240\u4ee5\u9019\u53ef\u4ee5\u8b49\u660e\uff0c\u662f\u6709\u53ef\u80fd\u56e0\u70ba DNS \u7684\u6545\u610f\u89e3\u8b6f\u932f\u8aa4\uff0c\u800c\u8b93\u4f60\u4e0a\u5230\u4eff\u5192\u7684yahoo\u7db2\u7ad9\u7684\uff0c\u6240\u4ee5\u4f60\u7684\u5bc6\u78bc\u5c31\u88ab\u5077\u4e86\u3002<\/p>\n<p>\u8eab\u70ba\u4f7f\u7528\u8005\u88ab\u9a19\u5c31\u88ab\u9a19\u4e86\uff0c\u90a3\u8eab\u70ba\u4f3a\u670d\u5668\u7684\u7ba1\u7406\u8005\u66f4\u8981\u6ce8\u610fDNS Server \u7684\u5b89\u5168\u554f\u984c\uff0c\u6211\u5728\u7db2\u8def\u4e0a\u627e\u5230\u4fdd\u8b77\u7684\u65b9\u6cd5\uff0c\u53c3\u8003\u770b\u770b\uff0c\u4ee5\u4e0b\u64cd\u4f5c\u4f5c\u696d\u7cfb\u7d71\u662f CentOS 5<\/p>\n<p><font color=\"#408080\">\/\/ \u525b\u525b\u8aaa\u904e\uff0c\u73fe\u5728\u90fd\u6709\u6700\u65b0\u7248\u672c\u7684 BIND \u4e86\uff0c\u66f4\u65b0 BIND \u5230\u6700\u65b0\u7248\u672c<br \/><\/font># yum update bind bind-chroot -y<\/p>\n<p># vi \/etc\/named.conf<br \/>\/\/ query-source address * port 53; <font color=\"#0000ff\">\u2190 \u8a3b\u89e3\u6389\u9019\u884c<br \/><\/font>dnssec-enable yes;&nbsp;&nbsp; <font color=\"#0000ff\">\u2190\u3000\u589e\u52a0\u9019\u884c\uff0c\u4f7f\u7528 random port \u56de\u61c9 client<br \/><\/font>allow-recursion { 192.168.1.0\/24; }; <font color=\"#0000ff\">\u2190 \u53ea\u9650\u5236\u5340\u7db2\u5167\u4f7f\u7528 recursion query\uff0c\u6216\u4e7e\u8106\u90fd\u4e0d\u8981\u7528 recursion query<\/font><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u5e7e\u500b\u79ae\u62dc\u524d\u6bcf\u500b\u7cfb\u7d71\uff0c\u5305\u62ecMac,Windows,Unix,Linux&#8230;\u7b49\u7b49\uff0c\u90fd\u79d8\u5bc6\u5730\u4fee\u5fa9\u4e86DNS &#8230;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[],"tags":[],"class_list":["post-804","post","type-post","status-publish","format-standard","hentry"],"_links":{"self":[{"href":"https:\/\/blog.smallken.site\/index.php?rest_route=\/wp\/v2\/posts\/804","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blog.smallken.site\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.smallken.site\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.smallken.site\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.smallken.site\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=804"}],"version-history":[{"count":0,"href":"https:\/\/blog.smallken.site\/index.php?rest_route=\/wp\/v2\/posts\/804\/revisions"}],"wp:attachment":[{"href":"https:\/\/blog.smallken.site\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=804"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.smallken.site\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=804"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.smallken.site\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=804"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}