• Advertise
• Search
• Free Magazines
• Newest Links
• Categories
• Register
• Login

Defense in Depth for DNS

Added by Papergrl

Description: This paper will focus on security for the most widely used DNS server on the Internet, namely the Berkeley Internet Name Domain (BIND). Some of the perimeter defense techniques may be applicable to other implementations of DNS. In this paper we will be taking a layered approach to DNS security. First, we will investigate configurations on the DNS server itself to secure it. Next, will be a section on perimeter defenses to protect your DNS server, and lastly, is a section on backup considerations for DNS. With the application of proper precautions to your DNS servers, you can mitigate many of the risks and vulnerabilities associated with the service. As always, a prudent DNS administrator should also keep up with the latest news about bugs or vulnerabilities to stay ahead of the malicious hacker.