Sin 15: Trusting Network Name Resolution

Previous page
Table of content
Next page

Overview of the Sin

This sin is more understandable than mostwe absolutely have to rely on name resolution to function in most realistic scenarios. After all, you really dont want to have to remember that http://216.239.63.104 is an IP address for one of the many English-customized web servers at www.google.com, nor do you want to have to deal with the nuisance of updating a file on your system if something changes.

The real problem here is that most developers dont realize how fragile name resolution is, and how easily it is attacked . Although the primary name resolution service is DNS for most applications, it is common to find Windows Internet Name Service (WINS) used for name resolution on large Windows networks. Although the specifics of the problem vary depending on what type of name resolution service is being used, virtually all of them suffer from the basic problem of not being trustworthy.


Previous page
Table of content
Next page
19 Deadly Sins of Software Security. Programming Flaws and How to Fix Them
Writing Secure Code
ISBN: 71626751
EAN: 2147483647
Year: 2003
Pages: 239
Authors: Michael Howard, David LeBlanc
BUY ON AMAZON
Excel Scientific and Engineering Cookbook (Cookbooks (OReilly))
MySQL Clustering
Logistics and Retail Management: Emerging Issues and New Challenges in the Retail Supply Chain
Wireless Hacks: Tips & Tools for Building, Extending, and Securing Your Network
Programming .Net Windows Applications
DNS & BIND Cookbook
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy