Which of the following best describes DNS poisoning?
Think about what happens when DNS information is changed to mislead users.
DNS poisoning involves corrupting the DNS cache so that users are redirected to fake or harmful websites instead of the intended ones.
Which part of the DNS system is most commonly targeted in DNS poisoning attacks?
Attackers often try to trick the system that answers queries for users quickly.
The DNS resolver cache stores recent DNS query results and is commonly targeted because poisoning it affects many users quickly.
What is the most likely outcome for a user whose DNS cache has been poisoned?
Consider what happens when DNS points to wrong IP addresses.
When DNS cache is poisoned, users unknowingly visit fake websites that can steal information or spread malware.
Which statement correctly distinguishes DNS poisoning from DNS spoofing?
Think about when the fake DNS information is introduced in each attack.
DNS poisoning changes stored DNS data to mislead future queries, while DNS spoofing sends fake DNS replies during a live query to trick the user immediately.
How does DNSSEC help protect against DNS poisoning attacks?
Consider how DNSSEC ensures the DNS data is trustworthy.
DNSSEC adds digital signatures to DNS data so that resolvers can check if the data is genuine and not tampered with, preventing poisoning.