摘要
本文根据DNS解析的过程,结合DNS协议本身的缺陷,总结分析了DNS欺骗的原理,利用DNS信息劫持进行DNS欺骗。当客户端发送域名解析请求时,先于DNS服务器给客户端发送欺骗应答数据包,由于客户端处理DNS应答报文都是简单地信任先到达的数据包,只要DNS应答数据包的序列号标识与请求数据包的序列号标识匹配就可以把客户端的请求重定向到某个预先设定的网页。并基于此设计开发了局域网的DNS欺骗系统。
According to the DNS resolution process and the drawback of DNS itself, this paper analyses the principle of DNS spoofing and DNS information hijack.When the client sends a domain resolution query, it will send the spoofing response packet to the client ahead of the DNS server. Since the way of the client processing DNS response is to trust the first arrival data simply, the client query can be redirected to malicious Web site only by matching the ID of the response with the ID of the query. This paper designs and develops DNS spoofing system based on LAN.
出处
《大连大学学报》
2012年第3期24-29,共6页
Journal of Dalian University
