This presentation was done June 4, 2021. DNS is the services that resolves Fully Qualified Domain Names to IP Addresses. By adding security systems you can prevent ads, malicious spyware, and your employees from destroying your systems. Using OpenDNS, Pi Holes, and basic HOSTS file hacks you can prevent a huge number of issues.
Download Presentation Slides: DNS-for-Cybersecurity-Silicon-DojoDownload
Download Presentation Slides: DNS-for-Cybersecurity-Silicon-DojoDownload
Slide Notes:
DNS for Cybersecurity
What is DNS
- Maps name to IP address: cnn.com -> 151.101.1.67
Threats to DNS
- DNS Tracking
- DNS Poisoning
- Malicious Websites/ Malware
- Employees…
HOSTS File
Local DNS Configuration
DNS in Router/ Modem
ISP’s and DNS Collecting data
- ISP’s collect your traffic and sell it to advertisers
- ISP’s may redirect bad URL’s
Public DNS
- Google
- 8.8.8.8
- 8.8.4.4
- Cloudflare
- 1.1.1.1
Websites Connecting to Other Sites
- When you go to a website, many other sites are embedded in the page and your information can be collected.
- https://developers.google.com/speed/pagespeed/insights/
Fingerprinting
Pi Hole
DNS Cacheing
Unbound Recursive DNS
- Communicates with Authoritative DNS Servers
OpenDNS
- https://signup.opendns.com/homefree/
DNSSEC
- It’s a mess
DNS Security Problems
- Can Cause Unexpected Problems
- Do you know EVERY domain name your clients use?
- Talk to your users
- Can users change DNS Settings?