Cache Poisoning

From ICANNWiki
Revision as of 14:31, 12 July 2021 by Jessica (talk | contribs)
Jump to navigation Jump to search

Cache Poisoning is the insertion of false data into recursive Name Server, which remember previous lookups.

Overview

The attacker sends fake DNS answers in response to a query and tricks it into thinking the wrong data is correct for a given domain. The server remembers the wrong answer in its cache and provides that wrong answer in future lookups.[1]

History

Mitigation

Use a randomized source port to reduce the risk of a cache poisoning attack instead of using the same source port number for every DNS query.

References

  1. Frequently Asked Questions on Cache Poisoning and Cross Pollination, IANA
Retrieved from "https://icannwiki.org/index.php?title=Cache_Poisoning&oldid=1325939"