Threats of unusual DNS query traffic from NIS clients (分散システム/インターネット運用技術)
スポンサーリンク
概要
- 論文の詳細を見る
We statistically investigated on unusual DNS query traffic from the several Linux PC servers employing network information system(NIS) as their authentication in the campus network of a university. The following results are obtained: (1) The DNS query traffic includes specific keywords of database servers in which one database is as a NIS server and the others are its NIS clients. (2) The DNS query traffic takes place when the NIS server crashes because recent NIS is carried out with libwrap that performs the name resolution. This name resolution is usually, achieved with referring to a /etc/hosts or to the DNS server. Therefore, we can reasonably take a workaround to, avoid the unusual DNS query traffic when configuring the specific keywords and their IP addresses in the /etc/hosts file.
- 一般社団法人情報処理学会の論文
- 2007-05-10
著者
-
Musashi Yasuo
Kumamoto Univ.
-
Musashi Yasuo
Graduate School Of Science And Technology Kumamoto University
-
Kubota Shinichiro
Center For Multimedia And Information Technologies Kumamoto University
-
Sugitani Kenichi
Center For Multimedia And Information Technologies Kumamoto University
-
Sugitani Kenichi
Graduate School Of Science And Technology Kumamoto University
-
Ludena Romana
Graduate School Of Science And Technology Kumamoto University
-
ROMANA Dennis
Graduate School of Science and Technology, Kumamoto University
-
NAGATOMI Hirofumi
Graduate School of Science and Technology, Kumamoto University
-
MATSUBA Ryuichi
Graduate School of Science and Technology, Kumamoto University
-
Romana Dennis
Graduate School Of Science And Technology Kumamoto University
-
Matsuba Ryuichi
Graduate School Of Science And Technology Kumamoto University
-
Nagatomi Hirofumi
Graduate School Of Science And Technology Kumamoto University
-
Sugitani Kenichi
Center For Multimedia And Information Technologies (cmit) Kumamoto University
関連論文
- Entropy study on A resource record DNS query traffic from the campus network (技術と社会・倫理)
- Entropy study on A resource record DNS query traffic from the campus network (インターネットアーキテクチャ)
- Entropy study on A resource record DNS query traffic from the campus network (インターネットと運用技術)
- Detection of NS resource record DNS resolution traffic, host search, and SSH dictionary attack activities (情報通信マネジメント)
- Detection of DNS cache poisoning attack in DNS standard resolution traffic (情報通信マネジメント)
- Threats of unusual DNS query traffic from NIS clients (分散システム/インターネット運用技術)
- Threats of unusual DNS query traffic from NIS clients (テレコミュニケーションマネジメント)
- Workaround for Welchia and Sasser Internet Worms in Kumamoto University
- Statistical Analysis in Log Files of Electronic-Mail Server and Domain Name System Server. SPAM Mail Generates Many DNS Query Packets
- Traffic Analysis on a Domain Name System Server. SMTP Access Generates Many Name-Resolving Packets to a Greater Extent than Does POP3 Access
- DNS based entropy and forensic analysis on the PCs for learners in a university (情報通信マネジメント)
- DNS based entropy and forensic analysis on the PCs for learners in a university (インターネットと運用技術)
- Detection of DNS Cache Poisoning Attack in DNS Standard Resolution Traffic
- Euclidian- and Cosine-Distances based Detection of Distributed Host Search Attacks
- Euclidian- and Cosine-Distances based Detection of Distributed Host Search Attacks
- DNS ANY Request Cannon in Total Inbound ANY Resource Record DNS Query Request Packet Traffic
- DNS ANY Request Cannon in Total Inbound ANY Resource Record DNS Query Request Packet Traffic
- Euclidian- and Cosine-Distances based Detection of Distributed Host Search Attacks