作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2010, Vol. 36 ›› Issue (5): 156-158. doi: 10.3969/j.issn.1000-3428.2010.05.057

• 安全技术 • 上一篇    下一篇

DNS重新绑定对Web浏览器的影响

何 旭   

  1. (达州职业技术学院信息工程系,达州 635001)
  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2010-03-05 发布日期:2010-03-05

Affect of DNS Rebinding on Web Browser

HE Xu   

  1. (Department of Information Engineering, Dazhou Vocational Technology College, Dazhou 635001)
  • Received:1900-01-01 Revised:1900-01-01 Online:2010-03-05 Published:2010-03-05

摘要: 域名系统(DNS)重新绑定破坏浏览器的区域源,并影响使用插件的浏览器与其插件之间的相互作用。根据DNS重新绑定攻击的机制,分析使用较短TTL响应DNS请求重新绑定主机到目标服务器的IP地址,使浏览器误认为2个服务器属于相同区域源,阐述浏览器访问相同区域源策略与多插件浏览器的易受攻击性。提出预防直接套接字访问客户端,阻止防火墙欺骗设法进入内部网络与滥用内部运行的服务,劫持IP地址进行点击欺骗、发送垃圾邮件与陷害客户端。

关键词: 相同区域源, 域名系统, 重新绑定, 插件, 点击欺骗

Abstract: Domain Name System(DNS) rebinding destroys the browser’s regional sources, affects the used plug-in browser and browser plug-ins and their interactions. According to DNS rebinding attack mechanism, analyses the used shorter TTL that responds to DNS requests for rebinding the host to the target server’s IP address, seduces browser to mistake two servers belong to the same-origin, and describes the browser access to the same-origin policy and multi plug-ins browser vulnerability. Prevent direct socket access to the client is presented, in order to prevent cheating to get into the internal network firewalls and abuse within the services running, hijacking IP address click fraud, sending spam and framed client.

Key words: same-origin, Domain Name System(DNS), rebinding, plug-in, click fraud

中图分类号: