Upload File

day 2 dns cert 2 dns fundamentals

10
DNS Fundamentals & Security for CERTs - Introduction - Chris Evans Delta Risk, LLC 7 March 2010 1

Upload: vngundi

Post on 20-Jun-2015

741 views

Category:

Technology


3 download

Report

Tags:

DESCRIPTION

Presentation by ICANN

TRANSCRIPT

Page 1: Day 2 Dns Cert 2 Dns Fundamentals

DNS Fundamentals & Security for CERTs- Introduction -

Chris EvansDelta Risk, LLC

7 March 2010

1

Page 2: Day 2 Dns Cert 2 Dns Fundamentals

In-Class Network

Please connect to the class network:

• SSID: ROC-WAP

• Key: cctld-wap!

-or-

• Wire into the switch in the middle of the room

2

Page 3: Day 2 Dns Cert 2 Dns Fundamentals

Welcome

• 1st Joint Cyber Security Workshop

– Welcome to Day 3 – DNS Fundamentals & Security

• Thank You!

– Forum of Incident Response & Security Teams (FIRST)

– ICANN• Ms. Yurie Ito

– INTERPOL• Mr. Vincent Danjean & Mr. Charles Njiri

3

Page 4: Day 2 Dns Cert 2 Dns Fundamentals

About Me…

• Chris Evans, CEHDelta Risk, LLC

[email protected]

• Strategic Consulting & Policy Development

• Operational Concept Development

• Security Program Assessment

• Advising technology development

• Cyber Exercises - Planning & Execution

• Training Programs & Courseware

• Expert Witness Services

http://www.delta-risk.net

4

mailto:[email protected]
mailto:[email protected]
mailto:[email protected]
mailto:[email protected]
http://www.delta-risk.net/
http://www.delta-risk.net/
http://www.delta-risk.net/
Page 5: Day 2 Dns Cert 2 Dns Fundamentals

About You…

• Name?

• Where are you from?

• Any specific experience with the Domain Name System – Operations or Security?

5

Page 6: Day 2 Dns Cert 2 Dns Fundamentals

Course Overview

• Day 3 : 0900 – 1730

0900 – 1030 : DNS Operational Fundamentals

1030 – 1100 : Coffee Break

1100 – 1200 : DNS Organization & Policy

1200 – 1330 : Lunch

1330 – 1500 : Threat Demonstrations & Mitigation Strategies

1500 – 1530 : Afternoon Tea

1530 – 1700 : Threat Demonstrations & Mitigation Strategies

1700 – 1730 : Questions & Answers / Course Evaluation

6

Page 7: Day 2 Dns Cert 2 Dns Fundamentals

In-Class Network

• Wireless Access

– SSID: ROC-WAP

– Key: cctld-wap!

• Server: 192.168.75.130

• Our Attack Machine: 192.168.85.5

• Our Targets

– NameServer: 192.168.101.10

– Registry System: 192.168.101.50

– Web-Mail System: 192.168.101.50

– You – or rather, your Windows VM or host…

7

Page 8: Day 2 Dns Cert 2 Dns Fundamentals

In-Class Files

• See the Wiki – 192.168.75.130 – for downloads

– SSH Client

– MS Terminal Services Client

• You will be given access to:

– Ubuntu 9.04 Desktop Virtual Machine• Web Console Access – see wiki for links

• SSH with X11 forwarding, for advanced users

• Caching Nameserver

– Windows Server 2008 Terminal Server• MS Terminal Server Client

• For the Malicious Use scenario

8

Page 9: Day 2 Dns Cert 2 Dns Fundamentals

Class Architecture

9

See Wiki

for IPs

Page 10: Day 2 Dns Cert 2 Dns Fundamentals

10

QUESTIONS BEFORE WE BEGIN…?


cryptdomainmgr - automating Cert, TLSA, DKIM and many more · Basics SSL Certifcate TLSA CAA DNSSEC DANE { all steps MX SPF DKIM additional DNS records ... I locks certi cate to domain/DNS

Cert IV in PM - Australasian Leadership Academy … · Cert IV in PMP units of competency. eLearning •Developing a Project Plan •Applying Project Management Fundamentals •Work

RIPE76 DNS Privacy measurements · DNS WG @ RIPE76 DNS Privacy Measurements Latest Measurements on DNS Privacy Sinodun ... Unbound . DNS WG @ RIPE76 DNS Privacy Measurements Test

DNS Session 1: Fundamentals - psg.combrian/doc/dns/dns1-presentation.pdf · /etc/resolv.conf That's all you need to configure a resolver search tiscali.co.uk nameserver 212.74.112.66

Fundamentals of Network Security Cert

CIMA CERTIFICATE IN BUSINESS ACCOUNTING Cert BA...Fundamentals of Management Accounting BA3 Fundamentals of Financial Accounting BA4 Fundamentals of Ethics, Corporate Governance and

DNS for Fun and Profit - DFN-CERT · 2009. 8. 5. · 12. DFN-CERT Workshop Roy Arends, Peter Koch • VGRS-ATLAS • BIND4,8,9 • eNom-DNS • MARADNS • MyDNS • Nominum ANS,CNS

Networking:! UDP&!DNS! · Root DNS Servers com DNS servers org DNS servers edu DNS servers poly.edu DNS servers umass.edu DNS servers yahoo.com DNS servers amazon.com

CERT 100 CERT 101 - Plaques and SuchCERT 100 CERT 101 CERT 105 CERT 102 CERT 103 CERT 104. CERT 106 CERT 111 CERT 108 CERT 109 CERT 107 CERT 110. CERT 114 CERT 112 CERT 113 CERT 115

Day 2 Dns Cert 4a Cache Poisoning

Coach Fundamentals Cert

CISSP Cert Guide - pearsoncmg.com€¦ · Ping of Death 143. xii CISSP Cert Guide Smurf 144 Fraggle 144 ICMP Redirect 144 Ping Scanning 145 DNS Attacks 145 DNS Cache Poisoning 145

Homepage of An Garda Síochána - Garda · 2019-05-09 · Cert HE, FdSc & BSc (Hons Forensic Road Collision Inv. Cert HRM Cert in Fundamentals of Understanding & Res ndin to Domestic

DNS Session 2: DNS cache operation and DNS debuggingbrian/doc/dns/dns2-presentation.pdf · DNS Session 2: DNS cache operation and DNS debugging ... the wrong answers if the authoritative

Project Fundamentals Cert

Day 2 Dns Cert 4b Name Server Redirection

Day 2 Dns Cert 3 Dns Organizations

Domain Name System (DNS) Ayitey Bulley [email protected] Session-1: Fundamentals

Networking Fundamentals: IP, DNS, URL, MIMEweb.cse.ohio-state.edu/~joseph.97/courses/3901/lectures/lecture10.pdf · Networking Fundamentals: IP, DNS, URL, MIME Lecture 10. Computer

Network Fundamentals€¦ · Network Fundamentals CHAPTER 1 Objectives Identify Common Network Devices Define Protocols Fundamentals of DNS Network Configuration Tools. Created by

Day 2 Dns Cert 1 Introduction

Global DNS-CERT Business Case: Improving the Security ... · Global DNS-CERT Business Case: Improving the Security, Stability and Resiliency of the DNS 4 2. Background As we consider

DNS Session 1: Fundamentals ccTLD workshop February 2007 Georgetown, Guyana Based on Brian Candler's materials ISOC CCTLD workshop

DNS Session 2: DNS cache operation and DNS debugging

CS 4700 / CS 5700 Network Fundamentals Lecture 12: DNS (What’s in a Name?) Revised 10/8/14

Internet&and&NetworkSecurity& Fundamentals&Day23& • Security#and#Informaon#Policy# • Security#on#DifferentLayers# • Server#Security# • DNS#Security# • Reverse#DNS# • ACLs#

DNS DNS SPS ThreatAvertdnsops.jp/event/20180627/DNSセキュリティはDNSで... · 2018-09-11 · DNS DNS " " SPS ThreatAvert DNS " DDoS ( $30 5+ 2018*6-27, ! " % '.46)/2 ©Akamai

Global DNS-CERT Business Case: Improving the Security ...€¦ · 29/03/2010  · The DNS-CERT will be evaluated by its stakeholders on an ongoing basis, and this is the key criterion

DNS DNS overview DNS operation DNS zones. DNS Overview Name to IP address lookup service based on Domain Names Some DNS servers hold name and address

Networking:! UDP&!DNS! · 2018-06-27 · Root DNS Servers com DNS servers org DNS servers edu DNS servers poly.edu DNS servers umass.edu DNS servers yahoo.com DNS servers amazon.com

Gestión de incidentes - CCN-CERT · VIII JORNADAS STIC CCN-CERT Incidentes notificados [CCN-CERT#140127491] Detectado contacto DNS ciberataque BYC [CCN-CERT#140128142] Detectado

HYDERABAD – How It Works DNS Fundamentals - schd.wsschd.ws/hosted_files/icann572016/9c/I57 HYD_Thu03Nov2016-How It... · HYDERABAD – How It Works DNS Fundamentals EN Note: The

STRENTHENING YOUR EXTERNAL DNS External DNS Overview DNS Background Strengthening External DNS with Anycast Example of an Anycast DNS Service

Collaborative Client-Side DNS Cache Poisoning Attacknael/pubs/infocom19.pdf · III. ATTACK FUNDAMENTALS AND THREAT MODEL Modern OSes have built-in DNS caches. These caches are shared

DNS Session 1: Fundamentals - PacNOG · 2017-02-06 · DNS is a distributed database: ... out the wrong answers if the authoritative data changes ... authoritative server −Remember