DNS Hijacking DNS Pollution introduction and public DNS referral

Source: Internet
Author: User
Tags microsoft onedrive

Source: http://www.itechzero.com/dns-hijacking-dns-pollution-introduction-and-public-dns-recommend.html

We know that some network operators for some purposes, some of the DNS operation, resulting in the use of the ISP's normal Internet settings cannot obtain the correct IP address through the domain name. Common means are:DNS hijacking and DNS pollution . DNS hijacking and DNS pollution is a very common phenomenon in the celestial kingdom. In general, after entering an error or non-existent URL, it should appear 404 pages, and we see are telecommunications, unicom and other operators of the site navigation page, normal access to the site when the small ads, the use of agents are still unable to access certain foreign sites, and the recent Google Almost completely blocked , Microsoft OneDrive will not open, these are related to DNS.

DNS Hijacking

DNS hijacking is through the hijacking of the DNS server, through some means to obtain a domain name of the resolution record control, and then modify the resolution of the domain name, resulting in access to the domain name from the original IP address to the modified designated IP, the result is that the specific URL can not access Or visit a fake URL, so as to achieve the purpose of stealing data or destroying the original normal service. DNS hijacking is accomplished by tampering with the data on the DNS server and returning it to the user with a wrong query result .

DNS Hijacking symptoms: Users in some regions after successful broadband connection, the first time to open any page is the ISP provided by the "Telecom connected Sky", "Netcom Yellow Pages Ads" and other content pages. There has been a user visited Google domain name when the site appeared Baidu. These all belong to DNS hijacking.

DNS pollution

DNS pollution is a way for a general user to get a false target host IP and cannot communicate with it, which is a DNS cache poison attack (DNS caches poisoning). The way it works is: Because the usual DNS queries do not have any authentication mechanism, and DNS queries are usually based on UDP is a non-connection unreliable protocol, so the DNS query is very easy to tamper with, through the UDP Port 53 DNS query intrusion detection, once found with the key The word matching request is immediately disguised as the target domain's resolution server (Ns,name Server) to return false results to the query.

DNS pollution symptoms: At present, some of the sites in the kingdom are forbidden to visit the site is basically through DNS pollution, such as YouTube, Facebook and other sites.

Workaround

For DNS hijacking, you can resolve the public DNS by manually replacing the DNS server.

For DNS pollution, it can be said that individual users are difficult to set up alone, usually can use VPN or domain name remote resolution method, but most of the need to purchase paid VPN or SSH, etc., can also be modified by the Hosts method, manually set the correct IP address of the domain name.

Public DNS

Public DNS is a free DNS Internet Infrastructure service for the public. We know that to surf the internet, we have to have the DNS resolution service, although most computer users will rarely go to manually set the DNS server address, but the default automatic access to the DNS address of the network provider, but for some small network service providers, may be global or national DNS node is relatively small, This can easily lead to the slow opening of web pages and so on.

After changing the DNS server address to public DNS, you can speed up the domain name resolution to some extent, prevent DNS hijacking , enhance Internet security , and block ads for most operators . Here are a few common DNS server addresses that are currently commonly used:

Td>v2ex DNS /tr>
name DNS Server IP address
openerdns 42.120.21.30  
Baidu Dudns 180.76 .76.76  
Ali alidns 223.5.5.5 223.6.6.6
178.79.131.110 199.91.73.222
CNNIC sdns 1.2.4.8 210.2.4.8
all DNS 114.114.114.114 114.114.115.115
Google DNS 8.8.8.8 8.8.4.4
OpenDNS 208.67.222.222 208.67.220.220
DNS send 101.226.4.6 218.30.118.6
DNS send-unicom 123.125.81 .6 140.207.198.6
zhong ke DNS 202.38.64.1
202.112.20.131
202.141.160.95
202.141.160.99
202.141.176.95
202.141.176.99

Given so much, say the choice, if it is domestic users, no neat, you can consider 114DNS and Ali DNS, if there is a neat, domestic can choose v2ex DNS and openerdns , foreign can choose a lot, preferably Google, although there is a delay, but can accept, other look at their own network situation.

Manually replacing DNS

1. Open "Network and Sharing Center";

2. Click on the network you are using to open the "status";

3. Open "Properties";

4. Double-click Internet Protocol version 4 (TCP/IPV4);

5. Click "Use the following DNS server address";

6. Enter the public DNS server address above to determine.

DNS Hijacking DNS Pollution public DNS original solution

This site in addition to the article is reproduced in the original, copyright Techzero all, reproduced please be sure to indicate the original link.
This article fixed link: http://www.itechzero.com/dns-hijacking-dns-pollution-introduction-and-public-dns-recommend.html.

DNS Hijacking DNS Pollution introduction and public DNS referral

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.