DNS - 域名系统,是互联网骨干网的一部分,可让您无缝上网。
DNS 如何工作
DNS 如何工作You can view a DNS as a phonebook directory where a certain name has a corresponding number. In a nutshell, a DNS is a translator between us and the internet (Computers and other devices in the network). That’s, computers only understand numbers; we humans understand words better.
When you want to access a certain service on the internet, the first thing you do is type the domain address, e.g., google.com. But the internet won’t understand that. What it will understand is the IP address, e.g., 216.58.204.14. It’s the DNS work to look up for the corresponding IP address of the domain name.
These IP addresses are stored in DNS servers. These are special kind of computers that resolve, translate and look up for the domain names and their corresponding IP addresses. The internet is made of many DNS servers, and if one DNS server can’t resolve a domain name to its IP address, it passes the request to other DNS servers till the IP address is found. Sometimes, the domain name may not have a corresponding IP address, and you might get a response, “We’re having trouble finding that site or the website doesn’t exist.’’
DNS 劫持
DNS 劫持如前所述,有多个 DNS 服务器,DNS 请求会传递到不同的 DNS 服务器,直到找到结果。
DNS hijacking is a malicious practice that involves redirecting your DNS queries to a wrong DNS server. When your query is finally serviced, you end up getting the wrong results. DNS hijacking is dangerous in that you may land on a spoofed site that may look like the legitimate site you wanted to visit. For instance, a spoofed website. It’s even more dangerous when phishing is involved.
In both cases, you might end up giving your confidential and sensitive information unknowingly such as emails, usernames, and their passwords, your credit card number and other Personally identifiable information (PII) that could be used in identity theft and fraud.
有时,它可能很烦人,有时也很危险。例如,如果你输入了一个不存在的域名,你的互联网服务供应商就会利用这一点,将你重定向到他们满是广告的网站。其中一些广告可能会侵犯你的隐私。
DNS 被劫持的方式
- 流氓 DNS 服务器
Some DNS servers on the internet are compromised, and their purpose is to enable malicious actors to hijack your DNS. When your DNS queries traverse the unsecured internet, you won’t know what DNS server services it. If it gets redirected to a compromised server, your DNS will be hijacked. Good thing, hacking a DNS server is hard, but redirecting your DNS traffic can be quite easy. For instance, there are many free DNS servers online claiming that they can bypass censorships and unblock websites. Since they are free, your DNS traffic will be used to service their costs.
- 恶意软件
Malware is harmful, and when they target your DNS, they may change your DNS settings to those of a compromised DNS server. This will redirect all your internet traffic to the DNS server, and your personal private information will be harvested without your knowledge. As said earlier, when spoofing and phishing are involved, the damage can be much worse as a result of identity theft.
其他恶意行为者不会给你带来太大的伤害,但你却可以从中获利。在这种情况下,你会得到满载重定向和无休止广告的结果。
- 互联网服务提供商的干扰
恶意 ISP 还会劫持您的 DNS 查询。这主要发生在你输入不存在的域名时。你的互联网服务供应商会劫持 "网站不存在 "的回复,并用一个包含相同信息但满是广告的网站来代替。这个网站还可以用来收集你的数据。
如何防止 DNS 劫持
如何防止 DNS 劫持- 使用 IPBurger VPN
IPBurger VPN routes your internet traffic via a secure encrypted tunnel. This ensures that your DNS queries are not exposed to prying eyes such as cybercriminals who can redirect them to rogue DNS servers. Hence IPBurger VPN provides you security and privacy while surfing the open internet.
- 使用信誉良好的杀毒软件/反恶意软件
Reliable antivirus/antimalware software also protects you against unauthorized system changes. This means malware can’t change your DNS settings. Also, remember to update your antivirus/antimalware software regularly.
- 避免使用免费的 DNS 服务器
Free DNS servers may promise a lot such as giving you access to blocked websites and other internet services. Some may work, and some will only harvest your data and also give you results loaded with ads.
- 定期更新路由器密码
良好的密码管理要求您在一段时间后或在您的密码被盗用时更改密码。大多数流行的路由器都有一个默认密码,可以在网上随意找到。如果不更改默认密码,网络犯罪分子就很有可能更改路由器的 DNS 设置,从而劫持你的 DNS 查询。
- 上网时保持警惕
DNS hijacking can happen to anyone including authoritative sites – this happens when authoritative DNS servers are poisoned. In this case, you might get legitimate results loaded with ads, or you might be redirected to a new page you have never seen before.
