DNS for Cybersecurity

Slide Notes:

DNS for Cybersecurity

What is DNS

  • Maps name to IP address: cnn.com -> 151.101.1.67

Threats to DNS

  • DNS Tracking
  • DNS Poisoning
  • Malicious Websites/ Malware
  • Employees…

HOSTS File

Local DNS Configuration

DNS in Router/ Modem

ISP’s and DNS Collecting data

  • ISP’s collect your traffic and sell it to advertisers
  • ISP’s may redirect bad URL’s

Public DNS

  • Google
    • 8.8.8.8
    • 8.8.4.4
  • Cloudflare
    • 1.1.1.1

Websites Connecting to Other Sites

  • When you go to a website, many other sites are embedded in the page and your information can be collected.
  • https://developers.google.com/speed/pagespeed/insights/

Fingerprinting

Pi Hole

DNS Cacheing

Unbound Recursive DNS

  • Communicates with Authoritative DNS Servers

OpenDNS

  • https://signup.opendns.com/homefree/

DNSSEC

  • It’s a mess

DNS Security Problems

  • Can Cause Unexpected Problems
    • Do you know EVERY domain name your clients use?
  • Talk to your users
  • Can users change DNS Settings?