DNS: Difference between revisions

From charlesreid1

No edit summary
Line 54: Line 54:
http://wiki.securityweekly.com/wiki/index.php/Episode175
http://wiki.securityweekly.com/wiki/index.php/Episode175


=Flags=
=Flags=
 
{{OpenVPNFlag}}
 
{{AnonymousBrowsingFlag}}


{{NetworkingFlag}}
{{NetworkingFlag}}


[[Category:DNS]]
{{DNSFlag}}

Revision as of 08:24, 3 April 2016

Why do I have a whole page dedicated to DNS?

Well, DNS is important. Tracking people's DNS queries provides you a record of what sites they are visiting, based on their IP addresses. It's important to understand where your DNS queries are going, who might be seeing them, and who might be storing them (to, say, hand over to the government when they ask).

This is why the WikiLeaks wiki has a page on DNS: https://www.wikileaks.org/wiki/Alternative_DNS

Setting DNS

In Linux, the DNS servers that a computer uses to look up website names and turn them into IP addresses are listed in the file /etc/resolv.conf

Debian Linux

Notes on network settings in Debian, from the Debian Wiki: https://wiki.debian.org/NetworkConfiguration#Defining_the_.28DNS.29_Nameservers

NetworkManager kept changing my resolv.conf to be whatever it automatically obtained from my gateway (my home router), which unfortunately was a DNS I did NOT want to use.

To fix this, I had to modify the NetworkManager settings for my ethernet device. Here's a script to walk you through that process: 

cat fix_dns.sh 
#!/bin/bash
#
# Fix the DNS settings

echo ""
echo "FIX DNS SETTINGS"
echo "----------------"
echo ""
echo "Step 1) Find your connection in the list and click Edit."
echo "Step 2) Click the IPv4 Settings tab."
echo "Step 3) Choose Automatic (DHCP) Addresses Only instead of just Automatic (DHCP)"
echo "Step 4) Enter DNS servers in DNS Servers field, separated by spaces."
echo ""
echo "          OpenDNS:"
echo "              208.67.222.222"
echo "              208.67.220.220"
echo ""
echo "          Cisco"
echo "              171.70.168.183"
echo "              128.107.241.185"
echo "              64.102.255.44"

nm-connection-editor &> /dev/null

This prints out teh steps, then runs the NetworkManager connection editor to allow you to update the settings of your particular network interface.

If you're using multiple network interfaces (e.g., a wired interface and a wireless interface) and want to use the same DNS for all of them, edit them one-at-a-time.

Metasploit DNS Recon

Tricks for DNS recon and information-gathering using Metasploit:

http://wiki.securityweekly.com/wiki/index.php/Episode175

Flags


Defcon.png
Networking
pages and notes about computer networks.


Category:Networking


Wired Networks:

Man in the Middle attack vectors on wired networks: Man in the Middle/Wired

Packet analysis with Wireshark: Wireshark Packet Analysis

Linux networking: Linux/Networking


Wireless Networks:

Using Aircrack: Aircrack

Many Ways to Crack a Wifi: Cracking Wifi


Linux Networking

Linux/Networking  · Linux/SSH  · Linux/File Server


Virtual Networks:

Notes on OpenVPN: OpenVPN

Setting Up a Static Key VPN: OpenVPN/Static Key


Settings, Services, and Protocols:

Domain Name Servers: DNS  · Linux/DNS

IP Version 6: IPv6


Tools:

Wireshark  · SSH  · Stunnel  · Tor  · Ettercap  · Aircrack  · Tcpdump


Tunnels:

Tunnels  · HTTP and HTTPS  · SSH Tunnels  · Linux/SSH


Flags  · Template:NetworkingFlag  · e



Template:DNSFlag

Retrieved from "https://charlesreid1.com/w/index.php?title=DNS&oldid=10255"