DNS poisoning where a DNS entry is modified to send traffic

DNS poisoning”, where a DNS entry is modified to send traffic to a host controlled by the attacker. This can occur at multiple points along the search path used by a host to revolve a host name to an IP address, one of which is the local hosts file. What kind of measures could you take to ensure that the local hosts file is accurate? Explain

Solution

1.Using difference servers separate the authoritative function from the resoloving function to reduce possibility of domains getting offline from denial of service attacks

2. Monitor name servers and their status so that we can spot the malicious activity as early as possible.

3.When u log on to your DNS servers to make changes use digital certificates to authenticate your SSH session.

4.close un necessary ports and stop unwanted services

5. Use a hidden primary master name server.so that we can upgrade the server without making domain un reachable.