DNS Zehirlenmesi (DNS Poisoning)¶
DNS sunucusuna kendisinde olmayan bir kaydı sorup aynı zamanda sorusunun cevabını da yollaması halinde DNS sunucusunun cacheine istediği kaydı yazdırabilir.
IP adresi bilinmeyen bir siteyi recurse olarak sorgulamazsak.
$ dig mertcangokgoz.com +norecurse
; <<>> DiG 9.10.3-P4-Raspbian <<>> mertcangokgoz.com +norecurse
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 4675
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1452
; OPT=12: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ("..............................................")
;; QUESTION SECTION:
;mertcangokgoz.com. IN A
;; ANSWER SECTION:
mertcangokgoz.com. 300 IN A
mertcangokgoz.com. 300 IN A
;; Query time: 35 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Sat Apr 06 17:23:02 +03 2019
;; MSG SIZE rcvd: 162
IP adresi bilinmeyen bir siteyi recurse olarak sorgularsak.
$ dig mertcangokgoz.com
; <<>> DiG 9.10.3-P4-Raspbian <<>> mertcangokgoz.com
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 29538
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1452
; OPT=12: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ("..............................................")
;; QUESTION SECTION:
;mertcangokgoz.com. IN A
;; ANSWER SECTION:
mertcangokgoz.com. 300 IN A 104.31.83.25
mertcangokgoz.com. 300 IN A 104.31.82.25
;; Query time: 48 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Sat Apr 06 15:19:04 +03 2019
;; MSG SIZE rcvd: 162
Tekrardan recurse sorgu olmadan sorarsak.
$ dig mertcangokgoz.com +norecurse
; <<>> DiG 9.10.3-P4-Raspbian <<>> mertcangokgoz.com
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 50059
;; flags: qr ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1452
; OPT=12: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ("..............................................")
;; QUESTION SECTION:
;mertcangokgoz.com. IN A
;; ANSWER SECTION:
mertcangokgoz.com. 3596 IN A 1.1.1.1
;; Query time: 2 msec
;; SERVER: 8.8.8.8#53(8.8.8.8)
;; WHEN: Sun Jul 29 11:07:10 +03 2018
;; MSG SIZE rcvd: 65
Son Güncelleme: May 28, 2020