×


Related to dns


More about DNS cache poisoning

This article covers all about DNS cache poisoning attack and how can you help prevent it. In fact, It is imperative that you stay vigilante to prevent such attacks, otherwise you might end up with your data at risk, leave your devices at the risk of malware infection or forced censorship, and even the attacker might halt your security update leaving you vulnerable to a plethora of other attacks.


How can I prevent DNS attacks ?

  • Audit your DNS zones. First things first.
  • Keep your DNS servers up-to-date.
  • Hide BIND version.
  • Restrict Zone Transfers.
  • Disable DNS recursion to prevent DNS poisoning attacks.
  • Use isolated DNS servers.
  • Use a DDOS mitigation provider.
  • Two-Factor Authentication.

What is difference between DNS spoofing and DNS poisoning?

DNS cache poisoning is the act of entering false information into a DNS cache, so that DNS queries return an incorrect response and users are directed to the wrong websites. DNS cache poisoning is also known as 'DNS spoofing'.

Dig DNS Records in a Sample Python Program

This article covers how to dig DNS records by using a simple python program with the use of the python module dnspython. In fact, A Python program is useful to find either a single record type at a time or all record types of a domain name. 

The dig lookup runs queries against DNS servers to retrieve DNS records for a specific name (FQDN - fully qualified domain name). It is possible to lookup any DNS record in this manner.

Use the Dig Command in Linux - Doing it right ?

This article covers how to query various DNS records. The dig command in Linux is used to gather DNS information. It stands for Domain Information Groper, and it collects data about Domain Name Servers. The dig command is helpful for diagnosing DNS problems, but is also used to display DNS information.

By default, dig sends the DNS query to name servers listed in the resolver(/etc/resolv.conf) unless it is asked to query a specific name server.


How to Install Dig on Linux ?

1. On Debian and Ubuntu, run:

$ apt-get install dnsutils

2. On CentOS 7, run the command:

$ yum install bind-utils

3. Once installed, check the version, to make sure the setup was completed successfully:

$ dig -v


Dig Syntax

In its simplest form, the syntax of the dig utility will look like this:

dig [server] [name] [type]


i. [server] – the IP address or hostname of the name server to query.

If the server argument is the hostname then dig will resolve the hostname before proceeding with querying the name server.

It is optional and if you don't provide a server argument then dig uses the name server listed in /etc/resolv.conf.

ii. [name] – the name of the resource record that is to be looked up.

iii. [type] – the type of query requested by dig. For example, it can be an A record, MX record, SOA record or any other types.

By default dig performs a lookup for an A record if no type argument is specified.

Install and Use Unbound in Ubuntu 20.04 - Step by Step Process ?

This article covers how to install and configure the Unbound name resolution server in Ubuntu with basic configuration. Unbound is basically a recursive-only caching DNS server which can perform DNSSEC validation of results. Unbound is the best alternative for setting up a caching nameserver on your LAN or personal machine.


To install Unbound from official Repository, run the following commands:

$ sudo apt update
$ sudo apt install unbound -y

Flush DNS Cache on Ubuntu 20.04 - Step by Step process ?

This article covers how to flush the DNS cache on Ubuntu. If the sites are not loading properly or you are receiving outdated sites, try to flush the DNS cache to see if the issue resolves. 

Remember, after the DNS cache is flushed, sites will first load slightly slower. 

But once the DNS cache is re-populated, sites will be loaded faster.


Facts about flushing DNS cache on Ubuntu:

1. DNS cache is a temporary database that stores information about previous DNS lookups. 

2. Whenever you visit a website, your OS and web browser will keep a record for the domain and the corresponding IP address. 

3. Flushing DNS cache eliminates the need for repetitive queries to the remote DNS servers and allows your OS or browser to resolve the website's URL quickly.


How to use dns-clean to flush DNS-Cache ?

You can clear the DNS cache is by starting the dns-clean utility. Run the following command in your Terminal to do so:

$ sudo /etc/init.d/dns-clean start

Steps to Install and Configure Nginx on Ubuntu Linux 18.04 LTS?

This tutorial will guide you on how to get Nginx server installed and configured on an Ubuntu Linux 18.04 LTS server.

Nginx is one of the most popular web servers in the world and is responsible for hosting some of the largest and highest-traffic sites on the internet. It is more resource-friendly than Apache in most cases and can be used as a web server or reverse proxy.


Nginx Configuration Files Structure

  • All configuration files are located in the /etc/nginx/ directory.
  • Nginx main configuration file is at /etc/nginx/nginx.conf.
  • It's best practice to create a separate configuration file of each domain for better maintainability.
  • New server blocks (configuration file) of each domain should be stored in /etc/nginx/sites-availabledirectory. You need to make symlink of these configuration files at /etc/nginx/sites-enabled to take in used by Nginx.
  • Activating server blocks is done by creating a symlink (a pointer) from the configuration file sites in a /etc/nginx/sites-enabled directory to the sites-enabled directory.
  • The default server web root directory is /var/www/html
  • It's best practice to to follow standard naming convention. Nginx server block files name should as domain name and must end with .conf extension. For example, your domain name is example.com then server block file name should example.com.conf
  • Nginx log files (access.log and error.log) are located in the /var/log/nginx/ directory. It's also recommended to have a different access and error log files for each server block.

How to pair Pi-hole with an OpenVPN Server to block ads and enhance privacy on Ubuntu / Debian Linux?

This article will help you to get Pi-hole installed and to configure it Debian or Ubuntu Linux along with an OpenVPN server.