Open DNSÀÇ Ãë¾àÁ¡À¸·Î ÀÎÇØ ÀÎÇÑ °ø°ÝµéÀº 2008³âºÎÅÍ Áö¼ÓÀûÀ¸·Î ¹ß»ýÇÏ°í ÀÖÁö¸¸,
ÇöÀç±îÁö DNS º¸¾È¿¡ ´ëÇÑ ºÎºÐµéÀº °í·ÁµÇÁö ¾Ê°í ³×ÀÓ¼¹ö ±¸ÃàÀÌ µÇ´Â °æ¿ì°¡ ¸¹½À´Ï´Ù.
À¥ ¼Ò½ºÀÇ Ãë¾àÁ¡ ó·³ ¸¹Àº ºÎºÐµé º¯°æÇÏ°í ¼öÁ¤ÇØ¾ß ÇÏ´Â ÀÛ¾÷µéÀÌ ÇÊ¿äÄ¡ ¾ÊÀ¸´Ï,
÷ºÎµÈ °¡À̵带 µû¶ó ½Å±Ô ±¸Ãà ¹× ±âÁ¸ ¿î¿µ µÇ¾î ÀÖ´Â DNS ¼³Á¤À» ¼öÁ¤ ÇÏ½Ç °ÍÀ» ±Ç°íÇØ µå¸³´Ï´Ù.
°¡Àå Áß¿äÇÑ °ÍÀº bind ¹öÀüÀ» ÃֽŹöÀüÀ¸·Î ¾÷±×·¹À̵å ÇØÁÖ¼Å¾ß ÇÕ´Ï´Ù.
bind´Â ³Î¸® ¾Ë·ÁÁø Ãë¾àÁ¡µéÀÌ ¸¹½À´Ï´Ù. ¹öÀü ¾÷±×·¹ÀÌµå µÇ¸é¼ ÀÌ·¯ÇÑ »çÇ×µéÀÌ °³¼± µÇ¾ú½À´Ï´Ù.
¾Æ·¡ ¾÷±×·¹ÀÌµå ¹æ¹ý Âü°í ÇϽñ⠹ٶø´Ï´Ù.
KISAÀÇ ÃÖ±Ù º¸¾È°øÁö ÀÔ´Ï´Ù.
http://www.krcert.or.kr/kor/data/secNoticeView.jsp?p_bulletin_writing_sequence=2312
÷ºÎÆÄÀÏÀº KISA (Çѱ¹ÀÎÅͳÝÁøÈï¿ø) ¿¡¼ ¹èÆ÷ÇÏ´Â DNS °¡À̵å ÀÔ´Ï´Ù.
ÆÄÀÏ ¿©½Ã±â Àü¿¡ °£·«ÇÏ°Ô ¼³¸íÀ» µå¸®ÀÚ¸é, ³×ÀÓ¼¹ö ±¸¼º½Ã recursion no ¿É¼ÇÀÌ Àû¿ëµÇ¾î ÀÖÁö ¾Ê°Å³ª yes·Î µÇ¾î Àִ°æ¿ì
ÀÚü³×ÀÓ¼¹ö¿¡ naver.com, google.co.kr ¿Í °°ÀÌ µî·Ï µÇ¾î ÀÖÁö ¾ÊÀº µµ¸ÞÀÎ ÁúÀǽÿ¡µµ ´äº¯À» ÇØÁÖ°Ô µË´Ï´Ù.
ÇØ´ç ¿É¼ÇÀ» ²ûÀ¸·Î ÀÎÇØ ÀÚ½ÅÀÌ ¼³Á¤À» °¡Áö°í ÀÖ´Â zone ÆÄÀϵéÀ» °¡Áö°í ÀÖ´Â µµ¸ÞÀε鿡 ´ëÇؼ¸¸ ´äº¯À» ÇØÁÝ´Ï´Ù.
ÀÌ·¯ÇÑ ´äº¯ ÇØÁÖ´Â ºÎºÐµéÀ» ÀÌ¿ëÇØ °ø°ÝÀÚ´Â Source IP¸¦ °ø°ÝÇÒ °÷ÀÇ ³×ÀÓ¼¹ö·Î º¯Á¶ÇÏ°í ÆÐŶ»çÀÌÁ ºñÁ¤»óÀûÀ¸·Î Å©°ÔÇϸç,
¼ö¸¹Àº Ãë¾àÁ¡À» °¡Áø ³×ÀÓ¼¹öµéÀ» µ¿¿øÇÏ¿© Á¤»óÀûÀÎ ¼öÇàÀ» ¹æÇØÇÏ´Â ¿ªÇÒÀ» ÇÕ´Ï´Ù. DDoS °ø°ÝÀÚ(Á»ºñ)°¡ µÇ´Â °ÍÀÔ´Ï´Ù.
³×ÀÓ¼¹ö 1Â÷ : ns1.hostway.co.kr
³×ÀÓ¼¹ö 2Â÷ : ns2.hostway.co.kr
Web 1 : hostway.co.kr / www.hostway.co.kr
Web 2 : syncmail.co.kr / www.syncmail.co.kr
Web 3 : teamex.co.kr / www.teamex.co.kr
WindowsÀÇ Ä¿¸Çµåâ ȤÀº linux Shell »ó¿¡¼ nslookupÀ¸·Î ÁúÀǽà Open DNS ¼³Á¤ÀÌ µÇ¾î ÀÖ´Â °æ¿ì¿£
À§¿Í °°ÀÌ ³×ÀÓ¼¹ö¿¡ µî·Ï µÇ¾î ÀÖ´Â µµ¸ÞÀÎ ¿Ü¿¡µµ ÁúÀÇ°¡ °¡´É ÇÕ´Ï´Ù.
[rubi] / > # nslookup
> server ns1.hostway.co.kr
Default server: ns1.hostway.co.kr
Address: 1.1.1.1 #53
> google.co.kr
Server: 61.100.13.145
Address: 61.100.13.145#53
Name: google.co.kr
Address: 173.194.79.94
ÇÏÁö¸¸, recursion ¿É¼ÇÀ» no·Î º¯°æ ÇßÀ» °æ¿ì¿£ ³×ÀÓ¼¹ö¿¡ Á¸ÀçÇÏ´Â Zone ³»¿ëµé ¿Ü¿¡´Â °ÅºÎÇÏ°Ô µË´Ï´Ù.
no·Î º¯°æ ÇßÀ» °æ¿ì¿£ ¸ðµÎ °ÅºÎ ÇϹǷÎ, ƯÁ¤ ¾ÆÀÌÇÇ ´ë¿ª¿¡¼¸¸ Çã¿ë ÇÏ´Â ¹æ¹ýµµ Á¸Àç ÇÕ´Ï´Ù. (°¡À̵å Âü°í)
[hostway] / > # nslookup
> server ns1.hostway.co.kr
Default server: ns1.hostway.co.kr
Address: 1.1.1.1 #53
> google.co.kr
Default server: ns1.hostway.co.kr
Address: 1.1.1.1 #53
Non-authoritative answer:
*** Can't find google.co.kr: No answer
³×ÀÓ¼¹ö¿¡ Á¸Àç ÇÏ´Â µµ¸ÞÀÎÀÇ ZoneÆÄÀÏ ³»¿ëÀº ¾Æ·¡¿Í °°ÀÌ Á¤»ó ÁúÀÇ µË´Ï´Ù.
> teamex.co.kr
> server ns1.hostway.co.kr
Default server: ns1.hostway.co.kr
Name: teamex.co.kr
Address: 66.232.144.219
==============
¸®´ª½º »ç¿ëÀÚÀÇ °æ¿ì ¾Æ·¡¿Í °°ÀÌ dig ¸í·ÉÀ» ÅëÇØ °£´ÜÈ÷ È®ÀÎ °¡´É ÇÕ´Ï´Ù.
hostway # dig @111.111.111.111 +short porttest.dns-oarc.net TXT
Ãë¾àÁ¡ Á¸Àç DNS È®ÀÎ °á°ú :
z.y.x.w.v.u.t.s.r.q.p.o.n.m.l.k.j.i.h.g.f.e.d.c.b.a.pt.dns-oarc.net." aaa.bbb.ccc.ddd is POOR: 26 queries in 4.0 seconds from 1 ports with std dev 0.00" |
Á¤»ó DNS È®ÀÎ °á°ú :
z.y.x.w.v.u.t.s.r.q.p.o.n.m.l.k.j.i.h.g.f.e.d.c.b.a.pt.dns-oarc.net. "111.111.111.111 is GOOD: 26 queries in 2.0 seconds from 26 ports with std dev 17685.51" |
DNS Ãë¾àÁ¡¿¡ ´ëÇÑ Á¡°ËÀº ¾Æ·¡ URL¿¡¼ ÁøÇà ÇÏ½Ç ¼ö ÀÖ½À´Ï´Ù.
¼³Á¤ µÈ DNS Á¡°Ë
À¥ Ãë¾àÁ¡ Á¡°Ë
³×ÀÓ¼¹ö ¼³Á¤ ¹æ¹ý
º¸¾È Tip1. Bind ÆÐÅ°ÁöÀÇ ¹öÀüÀ» ÃÖ½ÅÀ¸·Î À¯Áö ÇØÁֽñ⠹ٶø´Ï´Ù. (ÇÏÀ§ ¹öÀüÀÇ °æ¿ì Ãë¾àÁ¡ Á¸Àç.
* bind ¼Ò½º ÆÐÅ°Áö¸¦ ¹Þ¾Æ ¼³Ä¡.
º¸¾È Tip2. Bind ¹öÀü °¨Ãß±â
¼³Á¤¹æ¹ýÀº recursion ¿É¼Ç°ú °°ÀÌ named.conf ȤÀº named.caching-nameserver.conf ¼³Á¤ÆÄÀÏ¿¡¼
options { } ºÎºÐ ¾È¿¡ version "UNKNOWN"; À» Ãß°¡
[hostway] / > #
vi /etc/named.caching-nameserver.conf
options {
...
...
version "UNKNOWN";
allow-recursion { trust; };
allow-transfer { none; };
...
...
};
ÀúÀåÇÏ°í ³ª¿Â µÚ, ¿ª½Ã named µ¥¸ó reload
/etc/rc.d/init.d/named reload