Fragmentation Considered Poisonous
نویسندگان
چکیده
We present practical poisoning and name-server blocking attacks on standard DNS resolvers, by off-path, spoofing adversaries. Our attacks exploit large DNS responses that cause IP fragmentation; such long responses are increasingly common, mainly due to the use of DNSSEC. In common scenarios, where DNSSEC is partially or incorrectly deployed, our poisoning attacks allow ‘complete’ domain hijacking. When DNSSEC is fully deployed, attacker can force use of fake name server; we show exploits of this allowing off-path traffic analysis and covert channel. When using NSEC3 opt-out, attacker can also create fake subdomains, circumventing same origin restrictions. Our attacks circumvent resolver-side defenses, e.g., port randomisation, IP randomisation and query randomisation. The (new) name server (NS) blocking attacks force resolver to use specific name server. This attack allows Degradation of Service, traffic-analysis and covert channel, and also facilitates DNS poisoning. We validated the attacks using standard resolver software and standard DNS name servers and zones, e.g., org.
منابع مشابه
In vitro ruminal digestion and micrographic analysis of the poisonous plant Wedelia glauca (Ort.) Hoffm. ex Hicken (Asteraceae)
Poisonous weeds are a serious threat to cattle in countries where animals are fed on natural as well as planted pastures. These may cause slight to severe lesions to different organs and, ultimately, death depending on the toxic principle and amount of ingested plant material. Wedelia glauca (Ort.) Hoffm. ex Hicken (Asteraceae) is a perennial plant from South America present in Southern Brazil,...
متن کاملFormation of highly toxic hydrogen cyanide upon ruby laser irradiation of the tattoo pigment phthalocyanine blue
Since laser treatment of tattoos is the favored method for the removing of no longer wanted permanent skin paintings, analytical, biokinetics and toxicological data on the fragmentation pattern of commonly used pigments are urgently required for health safety reasons. Applying dynamic headspace-gas chromatography with mass spectrometric detection (DHS-GC/MS) and comprehensive two-dimensional ga...
متن کاملEthnobotanical Study of Plants Poisonous to Cattle in Eastern Colombia
A survey of the plants considered to be poisonous to cattle was conducted in eastern Colombia by veterinarians and biologists. This area is characterized by high flora diversity and a large cattle population (approximately 5 million bovines, or 19 percent of the total population in Colombia). Livestock producers on 148 farms were queried about plants empirically known to be poisonous and the ef...
متن کاملHydrologic habitat preferences of select southeastern USA fishes resilient to river ecosystem fragmentation
Large-scale habitat preferences of riverine taxa are not always revealed by examining community data. Here, we show how lipid and growth can be used to evaluate hydrologic habitat preferences of fishes resilient to river fragmentation (i.e. species that can tolerate river fragmentation by dams, but not collapse). Lipid content was examined for seven fishes in a major southeastern USA reservoir ...
متن کاملPart 109—unavoidable Con- Taminants in Food for Human Consumption and Food-packaging Material
(a) Act means the Federal Food, Drug, and Cosmetic Act. (b) The definitions of terms contained in section 201 of the act are applicable to such terms when used in this part unless modified in this section. (c) A naturally occurring poisonous or deleterious substance is a poisonous or deleterious substance that is an inherent natural constituent of a food and is not the result of environmental, ...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید
ثبت ناماگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید
ورودعنوان ژورنال:
- CoRR
دوره abs/1205.4011 شماره
صفحات -
تاریخ انتشار 2012