DNS for Cybersecurity
Support Silicon Dojo at:
https://www.donorbox.org/etcg
DNS for Cybersecurity
What is DNS
Maps name to IP address: cnn.com – 151.101.1.67
Threats to DNS
DNS Tracking
DNS Poisoning
Malicious Websites/ Malware
Employees…
HOSTS File
Local DNS Configuration
DNS in Router/ Modem
ISP’s and DNS Collecting data
ISP’s collect your traffic and sell it to advertisers
ISP’s may redirect bad URL’s
Public DNS
Google
8.8.8.8
8.8.4.4
Cloudflare
1.1.1.1
Websites Connecting to Other Sites
When you go to a website, many other sites are embedded in the page and your information can be collected.
https://developers.google.com/speed/pagespeed/insights/
Fingerprinting
https://www.whatsmybrowser.org/
Pi Hole
DNS Cacheing
Unbound Recursive DNS
Communicates with Authoritative DNS Servers
OpenDNS
https://signup.opendns.com/homefree/
DNSSEC
It’s a mess
DNS Security Problems
Can Cause Unexpected Problems
Do you know EVERY domain name your clients use?
Talk to your users
Can users change DNS Settings?
by Eli the Computer Guy
linux dns server