Domain name hijacking technology hosts native DNS domain name resolution
Source: Internet
Author: User
KeywordsDomain name hijacking domain name resolution
Domain name hijacking is the hijacking of the network to intercept the domain name resolution request, analysis of the requested domain name, the scope of the review to release the request, otherwise direct return of the false IP address or do not make the request to lose the response, the effect is on a specific Web site can not access or access is a fake URL.
The basic principle of Domain name resolution (DNS) is to map the network address (domain name, in the form of a string, such as www.google.com) to the network address (IP address, such as 216.239.53.99) that the real computer can recognize so that the computer can communicate further, Delivery of Web sites and content.
Because the domain name hijacking is often only in the specific hijacked network scope, so the Domain name server (DNS) outside this scope can return the normal IP address, the advanced user may set the DNS point to these normal domain name servers in the network setting to realize the normal visit to the website. So the domain name hijacking usually accompanies the measure--block the normal DNS IP.
As we all know, a domain name is registered to belong to someone else, other people want to explain how to resolve, we are unable to control, but some friends often ask me what is the domain name hijacking, what is the reverse analysis, which makes me feel that many people still do not understand the domain name is how to resolve. Through this article, you can easily realize such as Baidu's Web site can visit your own site, of course, this is just a simulation, designed to let everyone understand how the domain name analysis is going on, we do not do bad ah, hehe.
Location of the Hosts file
Many users know that there is a Hosts file (no suffix name) in the window system and that the file is in the Windows folder under Windows 98 system.
In the Windows 2000/XP system located in the \%systemroot%\system32\drivers\etc folder, where%Systemroot% refers to the system installation path. For example, when Windows XP is installed in C:\WINDOWS, the Hosts file is in C:\WINDOWS\system32\drivers\etc.
You can also search for hosts files using Windows's own lookup feature.
This file is actually a plain text file, with ordinary text editing software such as Notepad can be opened and edited.
Two. The basic content and grammar of the Hosts file
Use Notepad to open the Hosts file, you can see Microsoft's description of this document. The hosts document generally resembles the following basic content
# Copyright (c) 1993-1999 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings's IP addresses to host names. each
# entry should is kept on a individual line. The IP address should
# is placed in the ' the ' followed by the corresponding host name.
# The IP address and the host name should is separated by at least one
# space.
#
# Additionally, comments (such as) may is inserted on individual
# lines or following the machine name denoted by a ' # ' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source Server
# 38.25.63.10 x.acme.com # x client Host
127.0.0.1 localhost
This file works according to the TCP/IP for Windows standard. Its role is to define the IP address and the
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.