Risorse

Test e Notebook

• DNS - Playing with dig.ipynb We will use the dig command for emulating the behavior of any application that operates as a DNS client.

• DNS - Understanding traffic.ipynb We will analyze the traffic generated by a browser for accessing a web page, in particular, for understanding the usage of the DNS to obtain IP addresses of web servers.

• Test - Uso DNS

Altro

Interrogare il DNS

• dig Linux man page Linux command for interacting with web servers, used in one of the Colab notebooks above.
• Online DNS Lookup Webapp for interacting with name servers (a sort of dig on line). Specify query (name and type) and name server IP address.
• The exact same operations of dig can be performed with nslookup, which is available in both Linux and Windows (with some differences between the two platforms). The syntax and output of nslookup is different from that of dig. Search for a tutorial if you are interested.

Gestione domini

• Domain Name Industry Brief - Dashboards Dati statistici sulla dimensione del DNS.

• DNS Zone Stats On this page you can find links to graphs displaying the total domain count per TLD zone.

• Internet Corporation for Assigned Names and Numbers (ICANN) is the organization that "coordinates" the DNS globally. Its website contains all the technical and procedural definitions related to how domains must be managed. A few relevant pages:

  • Registrant A domain name registrant is an individual or entity who registers a domain name.
  • Registrar ("DNS provider") An entity wishing to register a domain name under a generic top-level domain ("gTLD") may do so by using a registrar.
  • Registry operator The owner of a TLD (a TLD is a "registry").
  • Registro.it The owner of the .it domain (Consiglio Nazionale delle Ricerche, Pisa). Come diventare un Registrar (DNS provider) in grado di creare domini sotto .it.

• WHOIS: Fragile, unparseable, obsolete... and universally relied upon Detailed description of whois: how it works and some history.

• DOJ, Microsoft seize dozens of domains ‘used by Russian intelligence agents’ Uno dei numerosissimi casi di cronaca relativi al "sequestro" (disattivazione) di domini associati ad attività fraudolenta. In questo caso una campagna di spear phishing (cioè phishing mirato verso persone specifiche) attribuita ad una organizzazione associata al governo russo.

Altri link

Argomenti non inclusi nel programma del corso.

• The Internet Domain Name System Explained for Non-Experts Una descrizione di come è realizzato il DNS (come interagiscono i name server tra loro e molto altro).
• Root Name Servers The 13 root name servers are operated by 12 independent organisations.
  • Each IP address used for root name servers actually corresponds to many different servers, thanks to a technology called anycast that we will not study in this course (thus the number of root name servers is much greater than 13). This interaction with ChatGPT provides an overview of how anycast works.
• Root Name Servers Traffic Count of queries made to root name servers (daily averages): They are in the order of hundreds of billions queries every day.

Can I block the DNS in an entire nation?

Robustness analysis of DNS paths and web access paths in public administration websites

In this paper we examine the dependence of a large set of public administration websites on DNS entities for four different countries: Italy, Germany, UK and US. We collected the dependencies of those websites from DNS zones, nameservers, networks and assessed the potential global impact of localized attacks on those entities:

• How many websites could be affected, whether in name resolution or web server access, by an attack on a single zone, nameserver, network?
• How prevalent is the usage of groups of IP addresses, networks for providing redundancy? How many websites could be affected by an attack to one of those groups?