 |
|
 |
 |
Menu |
 |
|
 Home |
| |
|
 Discussions |
| |
|
 Tools |
| |
|
| Affiliates |
| |
|
 Content |
| |
|
 Info |
| |
|
|
|
|
|
|
User Info |
|
 Membership:
 Latest: MichaelSnaRe
 New Today: 0
 New Yesterday: 0
 Overall: 9145
 People Online:
 Visitors: 222
 Members: 0
 Total: 222
|
|
|
|
|
|
PacketStorm News |
|
|
|
 |
|
 |
 |
|
 |
IT Security and Insecurity Portal |
|
|
Can someone explain something about DNS? |
|
 Posted: Sun Sep 07, 2008 2:17 pm |
 |
|
| ZiPo |
| Advanced user |
 |
| |
| Joined: Jul 08, 2008 |
| Posts: 86 |
|
|
|
 |
|
 |
|
First of all i am total noob considering DNS stuff. I know some basic, i understand why DNS is used and i have read a lot on that subject but there are few things that i don't quite understand (ok ok there is a lot that i dont understand...but slowly learing).
Anyway the questions are:
1. DNS communicate with browser over UDP protocol, if that is true then I am able to custom craft the packet that need to be send containing all the data that i want to send including faked IP? Probably this will not work, not fot the IP part at least 
2.How does that packet looks like, or where could i learn more about the packet that is sent from my web browser to the nearest DNS?
Maybe i got all of this wrong, and I understand that there is no real use of crafting packet and send it to the DNS cos if it communicate over UDP and i insert some fake IP DNS will reply to the IP provided and not to me.
However if you can give me some links to read or share some info on subjects mentioned above i would be grateful.
Thank you in advance. |
|
|
|
|
|
|
|
|
| Posted: Sun Sep 07, 2008 5:30 pm |
|
|
| waraxe |
| Site admin |
 |
| |
| Joined: May 11, 2004 |
| Posts: 2407 |
| Location: Estonia, Tartu |
|
|
|
|
|
|
|
|
|
|
| Posted: Sun Sep 07, 2008 6:11 pm |
|
|
| ZiPo |
| Advanced user |
|
| |
| Joined: Jul 08, 2008 |
| Posts: 86 |
|
|
|
|
|
|
|
|
|
|
|
| Posted: Wed Sep 10, 2008 9:15 pm |
|
|
| ZiPo |
| Advanced user |
|
| |
| Joined: Jul 08, 2008 |
| Posts: 86 |
|
|
|
|
|
|
|
Hi again 
I figured out DNS (now i know a little bit more then before) and i managed to craft nice UDP packet with Adress request and spoffed IP, however i hit another wall (Ingress filtering). Is there any way to avoid/bypass around that one without hacking into my ISP gateway. Finding another ISP is an option, but i just wonder if there is any known way to do this?
Thanks in advance |
|
|
|
|
| Posted: Wed Sep 10, 2008 10:56 pm |
|
|
| waraxe |
| Site admin |
|
| |
| Joined: May 11, 2004 |
| Posts: 2407 |
| Location: Estonia, Tartu |
|
|
|
|
|
|
| Any serious ISP will apply measures against IP src address spoofing. But you can always pwn some remote machine in third world country, where IT security is not so good and try to send spoofed packets from there. |
|
|
|
|
| Posted: Thu Sep 11, 2008 5:21 am |
|
|
| ZiPo |
| Advanced user |
|
| |
| Joined: Jul 08, 2008 |
| Posts: 86 |
|
|
|
|
|
|
|
| Yes i was thinking about that also. Thank you Waraxe. |
|
|
|
|
www.waraxe.us Forum Index -> General discussion
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|
