Information Leakage Through the Domain Name System
Scott W. Rose, Anastase Nakassis, Ramaswamy Chandramouli
The Domain Name System (DNS) is the global lookup service for network resources. It is often the first step in an Internet transaction as well as a network attack. An attacker can query an organization's DNS as reconnaissance before attacking hosts on a particular network. There are different ways a zone administrator can minimize information leakage. This paper describes the risk and examines the protocol and operational options and looks at their advantages and drawbacks.
, Nakassis, A.
and Chandramouli, R.
Information Leakage Through the Domain Name System, Other, National Institute of Standards and Technology, Gaithersburg, MD, [online], https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=900237
(Accessed December 1, 2023)