{"id":476921,"date":"2023-08-09T09:05:02","date_gmt":"2023-08-09T09:05:02","guid":{"rendered":""},"modified":"2023-09-05T11:13:39","modified_gmt":"2023-09-05T11:13:39","slug":"dns-rebinding-attack","status":"publish","type":"wiki","link":"https:\/\/oneproxy.pro\/cn\/wiki\/dns-rebinding-attack\/","title":{"rendered":"DNS\u91cd\u65b0\u7ed1\u5b9a\u653b\u51fb"},"content":{"rendered":"

DNS \u91cd\u65b0\u7ed1\u5b9a\u653b\u51fb\u662f\u6076\u610f\u884c\u4e3a\u8005\u7528\u6765\u5229\u7528 Web \u6d4f\u89c8\u5668\u53ca\u5176\u5b89\u5168\u673a\u5236\u7684\u590d\u6742\u65b9\u6cd5\u3002\u5b83\u5229\u7528\u5bf9 DNS\uff08\u57df\u540d\u7cfb\u7edf\uff09\u7684\u56fa\u6709\u4fe1\u4efb\u6765\u7ed5\u8fc7 Web \u6d4f\u89c8\u5668\u5f3a\u5236\u6267\u884c\u7684\u540c\u6e90\u7b56\u7565 (SOP)\u3002\u8fd9\u79cd\u653b\u51fb\u53ef\u7528\u4e8e\u9488\u5bf9\u8bbf\u95ee\u4e0e\u7f51\u7edc\u670d\u52a1\uff08\u4f8b\u5982\u8def\u7531\u5668\u3001\u76f8\u673a\u3001\u6253\u5370\u673a\uff0c\u751a\u81f3\u5185\u90e8\u516c\u53f8\u7cfb\u7edf\uff09\u4ea4\u4e92\u7684\u7f51\u7ad9\u7684\u7528\u6237\u3002\u901a\u8fc7\u64cd\u7eb5 DNS \u54cd\u5e94\uff0c\u653b\u51fb\u8005\u53ef\u4ee5\u83b7\u5f97\u5bf9\u654f\u611f\u4fe1\u606f\u7684\u672a\u7ecf\u6388\u6743\u7684\u8bbf\u95ee\u3001\u6267\u884c\u4efb\u610f\u4ee3\u7801\u6216\u6267\u884c\u5176\u4ed6\u6076\u610f\u64cd\u4f5c\u3002<\/p>\n

DNS \u91cd\u65b0\u7ed1\u5b9a\u653b\u51fb\u7684\u8d77\u6e90\u548c\u9996\u6b21\u63d0\u53ca\u7684\u5386\u53f2<\/h2>\n

DNS \u91cd\u65b0\u7ed1\u5b9a\u7684\u6982\u5ff5\u6700\u521d\u7531 Daniel B. Jackson \u5728 2005 \u5e74\u7684\u7855\u58eb\u8bba\u6587\u4e2d\u63d0\u51fa\u3002\u7136\u800c\uff0c\u5728\u7814\u7a76\u4eba\u5458\u4e8e 2007 \u5e74\u53d1\u73b0\u5229\u7528 Web \u6d4f\u89c8\u5668\u7684\u5b9e\u9645\u5b9e\u73b0\u540e\uff0c\u8fd9\u79cd\u653b\u51fb\u5f15\u8d77\u4e86\u6781\u5927\u7684\u5173\u6ce8\u3002Web \u5e94\u7528\u7a0b\u5e8f\u5b89\u5168\u4e13\u5bb6 Jeremiah Grossman \u53d1\u8868\u4e86\u4e00\u7bc72007 \u5e74\u7684\u535a\u5ba2\u6587\u7ae0\u63cf\u8ff0\u4e86\u5982\u4f55\u4f7f\u7528 DNS \u91cd\u65b0\u7ed1\u5b9a\u6765\u89c4\u907f SOP \u5e76\u5371\u5bb3\u53d7\u5bb3\u8005\u9632\u706b\u5899\u540e\u9762\u7684\u7f51\u7edc\u8bbe\u5907\u3002\u4ece\u90a3\u65f6\u8d77\uff0cDNS \u91cd\u65b0\u7ed1\u5b9a\u5c31\u6210\u4e3a\u653b\u51fb\u8005\u548c\u9632\u5fa1\u8005\u90fd\u611f\u5174\u8da3\u7684\u8bdd\u9898\u3002<\/p>\n

DNS\u91cd\u65b0\u7ed1\u5b9a\u653b\u51fb\u8be6\u7ec6\u4fe1\u606f<\/h2>\n

DNS \u91cd\u65b0\u7ed1\u5b9a\u653b\u51fb\u6d89\u53ca\u4e00\u4e2a\u591a\u6b65\u9aa4\u8fc7\u7a0b\uff0c\u653b\u51fb\u8005\u6b3a\u9a97\u53d7\u5bb3\u8005\u7684 Web \u6d4f\u89c8\u5668\u5411\u4efb\u610f\u57df\u53d1\u51fa\u610f\u5916\u8bf7\u6c42\u3002\u653b\u51fb\u4e00\u822c\u9075\u5faa\u4ee5\u4e0b\u6b65\u9aa4\uff1a<\/p>\n

    \n
  1. \n

    \u521d\u59cb\u8bbf\u95ee<\/strong>\uff1a\u53d7\u5bb3\u8005\u8bbf\u95ee\u6076\u610f\u7f51\u7ad9\u6216\u88ab\u5f15\u8bf1\u70b9\u51fb\u6076\u610f\u94fe\u63a5\u3002<\/p>\n<\/li>\n

  2. \n

    \u57df\u540d\u89e3\u6790<\/strong>\uff1a\u53d7\u5bb3\u8005\u7684\u6d4f\u89c8\u5668\u53d1\u9001 DNS \u8bf7\u6c42\u6765\u89e3\u6790\u4e0e\u6076\u610f\u7f51\u7ad9\u5173\u8054\u7684\u57df\u3002<\/p>\n<\/li>\n

  3. \n

    \u77ed\u6682\u7684\u5408\u6cd5\u53cd\u5e94<\/strong>\uff1a\u6700\u521d\uff0cDNS \u54cd\u5e94\u5305\u542b\u6307\u5411\u653b\u51fb\u8005\u670d\u52a1\u5668\u7684 IP \u5730\u5740\u3002\u7136\u800c\uff0c\u8be5IP\u5730\u5740\u5f88\u5feb\u5c31\u4f1a\u66f4\u6539\u4e3a\u5408\u6cd5IP\uff0c\u4f8b\u5982\u8def\u7531\u5668\u6216\u5185\u90e8\u670d\u52a1\u5668\u7684IP\u3002<\/p>\n<\/li>\n

  4. \n

    \u540c\u6e90\u7b56\u7565\u7ed5\u8fc7<\/strong>\uff1a\u7531\u4e8e DNS \u54cd\u5e94\u7684 TTL\uff08\u751f\u5b58\u65f6\u95f4\uff09\u8f83\u77ed\uff0c\u53d7\u5bb3\u8005\u7684\u6d4f\u89c8\u5668\u4f1a\u5c06\u6076\u610f\u6765\u6e90\u548c\u5408\u6cd5\u6765\u6e90\u89c6\u4e3a\u76f8\u540c\u3002<\/p>\n<\/li>\n

  5. \n

    \u5f00\u53d1<\/strong>\uff1a\u653b\u51fb\u8005\u7684 JavaScript \u4ee3\u7801\u73b0\u5728\u53ef\u4ee5\u5411\u5408\u6cd5\u57df\u53d1\u51fa\u8de8\u6e90\u8bf7\u6c42\uff0c\u5229\u7528\u53ef\u4ece\u8be5\u57df\u8bbf\u95ee\u7684\u8bbe\u5907\u548c\u670d\u52a1\u4e2d\u7684\u6f0f\u6d1e\u3002<\/p>\n<\/li>\n<\/ol>\n

    DNS\u91cd\u65b0\u7ed1\u5b9a\u653b\u51fb\u7684\u5185\u90e8\u7ed3\u6784\u3002 DNS \u91cd\u65b0\u7ed1\u5b9a\u653b\u51fb\u7684\u5de5\u4f5c\u539f\u7406<\/h2>\n

    \u8981\u4e86\u89e3 DNS \u91cd\u65b0\u7ed1\u5b9a\u653b\u51fb\u7684\u5185\u90e8\u7ed3\u6784\uff0c\u6709\u5fc5\u8981\u68c0\u67e5\u6240\u6d89\u53ca\u7684\u4e0d\u540c\u7ec4\u4ef6\uff1a<\/p>\n

      \n
    1. \n

      \u6076\u610f\u7f51\u7ad9<\/strong>\uff1a\u653b\u51fb\u8005\u6258\u7ba1\u4e00\u4e2a\u5305\u542b\u6076\u610f JavaScript \u4ee3\u7801\u7684\u7f51\u7ad9\u3002<\/p>\n<\/li>\n

    2. \n

      DNS\u670d\u52a1\u5668<\/strong>\uff1a\u653b\u51fb\u8005\u63a7\u5236\u54cd\u5e94\u6076\u610f\u57df\u7684 DNS \u67e5\u8be2\u7684 DNS \u670d\u52a1\u5668\u3002<\/p>\n<\/li>\n

    3. \n

      TTL\u64cd\u4f5c<\/strong>\uff1aDNS \u670d\u52a1\u5668\u6700\u521d\u4f7f\u7528\u8f83\u77ed\u7684 TTL \u503c\u8fdb\u884c\u54cd\u5e94\uff0c\u5bfc\u81f4\u53d7\u5bb3\u8005\u7684\u6d4f\u89c8\u5668\u5728\u77ed\u65f6\u95f4\u5185\u7f13\u5b58 DNS \u54cd\u5e94\u3002<\/p>\n<\/li>\n

    4. \n

      \u5408\u6cd5\u76ee\u6807<\/strong>\uff1a\u653b\u51fb\u8005\u7684 DNS \u670d\u52a1\u5668\u968f\u540e\u4f7f\u7528\u4e0d\u540c\u7684 IP \u5730\u5740\u8fdb\u884c\u54cd\u5e94\uff0c\u6307\u5411\u5408\u6cd5\u76ee\u6807\uff08\u4f8b\u5982\uff0c\u5185\u90e8\u7f51\u7edc\u8d44\u6e90\uff09\u3002<\/p>\n<\/li>\n

    5. \n

      \u540c\u6e90\u7b56\u7565\u7ed5\u8fc7<\/strong>\uff1a\u7531\u4e8eTTL\u8f83\u77ed\uff0c\u53d7\u5bb3\u8005\u7684\u6d4f\u89c8\u5668\u5c06\u6076\u610f\u57df\u548c\u5408\u6cd5\u76ee\u6807\u89c6\u4e3a\u540c\u6e90\uff0c\u4ece\u800c\u5b9e\u73b0\u8de8\u57df\u8bf7\u6c42\u3002<\/p>\n<\/li>\n<\/ol>\n

      DNS\u91cd\u7ed1\u5b9a\u653b\u51fb\u7684\u5173\u952e\u7279\u5f81\u5206\u6790<\/h2>\n

      DNS \u91cd\u65b0\u7ed1\u5b9a\u653b\u51fb\u5177\u6709\u51e0\u4e2a\u4f7f\u5176\u6210\u4e3a\u6f5c\u5728\u5a01\u80c1\u7684\u5173\u952e\u7279\u5f81\uff1a<\/p>\n

        \n
      1. \n

        \u9690\u79d8\u6027<\/strong>\uff1a\u7531\u4e8e\u653b\u51fb\u5229\u7528\u4e86\u53d7\u5bb3\u8005\u7684\u6d4f\u89c8\u5668\u548c DNS \u57fa\u7840\u8bbe\u65bd\uff0c\u56e0\u6b64\u5b83\u53ef\u4ee5\u9003\u907f\u4f20\u7edf\u7684\u7f51\u7edc\u5b89\u5168\u63aa\u65bd\u3002<\/p>\n<\/li>\n

      2. \n

        \u8de8\u6e90\u5229\u7528<\/strong>\uff1a\u5b83\u5141\u8bb8\u653b\u51fb\u8005\u7ed5\u8fc7 SOP\uff0c\u4f7f\u4ed6\u4eec\u80fd\u591f\u4e0e\u672c\u5e94\u65e0\u6cd5\u4ece Web \u8bbf\u95ee\u7684\u8054\u7f51\u8bbe\u5907\u6216\u670d\u52a1\u8fdb\u884c\u4ea4\u4e92\u3002<\/p>\n<\/li>\n

      3. \n

        \u77ed\u65f6\u95f4\u7a97\u53e3<\/strong>\uff1a\u8be5\u653b\u51fb\u4f9d\u9760\u77ed TTL \u503c\u5728\u6076\u610f IP \u5730\u5740\u548c\u5408\u6cd5 IP \u5730\u5740\u4e4b\u95f4\u5feb\u901f\u5207\u6362\uff0c\u4f7f\u5f97\u68c0\u6d4b\u548c\u7f13\u89e3\u5177\u6709\u6311\u6218\u6027\u3002<\/p>\n<\/li>\n

      4. \n

        \u8bbe\u5907\u5229\u7528<\/strong>\uff1aDNS \u91cd\u65b0\u7ed1\u5b9a\u901a\u5e38\u9488\u5bf9\u53ef\u80fd\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u7684\u7269\u8054\u7f51\u8bbe\u5907\u548c\u8054\u7f51\u8bbe\u5907\uff0c\u5c06\u5176\u53d8\u6210\u6f5c\u5728\u7684\u653b\u51fb\u5a92\u4ecb\u3002<\/p>\n<\/li>\n

      5. \n

        \u7528\u6237\u4e0a\u4e0b\u6587<\/strong>\uff1a\u653b\u51fb\u53d1\u751f\u5728\u53d7\u5bb3\u8005\u6d4f\u89c8\u5668\u7684\u4e0a\u4e0b\u6587\u4e2d\uff0c\u53ef\u80fd\u5141\u8bb8\u8bbf\u95ee\u654f\u611f\u4fe1\u606f\u6216\u7ecf\u8fc7\u8eab\u4efd\u9a8c\u8bc1\u7684\u4f1a\u8bdd\u3002<\/p>\n<\/li>\n<\/ol>\n

        DNS \u91cd\u65b0\u7ed1\u5b9a\u653b\u51fb\u7684\u7c7b\u578b<\/h2>\n

        DNS \u91cd\u65b0\u7ed1\u5b9a\u653b\u51fb\u6280\u672f\u6709\u4e0d\u540c\u7684\u53d8\u4f53\uff0c\u6bcf\u79cd\u90fd\u6709\u7279\u5b9a\u7684\u7279\u5f81\u548c\u76ee\u6807\u3002\u4ee5\u4e0b\u662f\u4e00\u4e9b\u5e38\u89c1\u7684\u7c7b\u578b\uff1a<\/p>\n\n\n\n\n\n\n\n\n
        \u7c7b\u578b<\/th>\n\u63cf\u8ff0<\/th>\n<\/tr>\n<\/thead>\n
        \u7ecf\u5178 DNS \u91cd\u65b0\u7ed1\u5b9a<\/strong><\/td>\n\u653b\u51fb\u8005\u7684\u670d\u52a1\u5668\u591a\u6b21\u66f4\u6539 DNS \u54cd\u5e94\u4ee5\u8bbf\u95ee\u5404\u79cd\u5185\u90e8\u8d44\u6e90\u3002<\/td>\n<\/tr>\n
        \u5355\u6761A\u8bb0\u5f55\u91cd\u65b0\u7ed1\u5b9a<\/strong><\/td>\nDNS\u54cd\u5e94\u4ec5\u5305\u542b\u4e00\u4e2aIP\u5730\u5740\uff0c\u8be5IP\u5730\u5740\u4f1a\u5feb\u901f\u5207\u6362\u5230\u76ee\u6807\u7684\u5185\u90e8IP\u3002<\/td>\n<\/tr>\n
        \u865a\u62df\u4e3b\u673a\u91cd\u65b0\u7ed1\u5b9a<\/strong><\/td>\n\u8be5\u653b\u51fb\u5229\u7528\u5355\u4e2a IP \u5730\u5740\u4e0a\u7684\u865a\u62df\u4e3b\u673a\uff0c\u9488\u5bf9\u540c\u4e00\u670d\u52a1\u5668\u4e0a\u7684\u4e0d\u540c\u670d\u52a1\u3002<\/td>\n<\/tr>\n
        \u57fa\u4e8e\u65f6\u95f4\u7684\u91cd\u65b0\u7ed1\u5b9a<\/strong><\/td>\nDNS \u54cd\u5e94\u6309\u7279\u5b9a\u65f6\u95f4\u95f4\u9694\u66f4\u6539\uff0c\u4ece\u800c\u5141\u8bb8\u968f\u7740\u65f6\u95f4\u7684\u63a8\u79fb\u8bbf\u95ee\u4e0d\u540c\u7684\u670d\u52a1\u3002<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

        DNS\u91cd\u7ed1\u5b9a\u653b\u51fb\u7684\u5229\u7528\u65b9\u5f0f\u3001\u4f7f\u7528\u8fc7\u7a0b\u4e2d\u9047\u5230\u7684\u95ee\u9898\u53ca\u89e3\u51b3\u65b9\u6848<\/h2>\n

        DNS \u91cd\u65b0\u7ed1\u5b9a\u653b\u51fb\u5e26\u6765\u4e25\u91cd\u7684\u5b89\u5168\u6311\u6218\uff0c\u5176\u6f5c\u5728\u7528\u9014\u5305\u62ec\uff1a<\/p>\n

          \n
        1. \n

          \u8d8a\u6743\u5b58\u53d6<\/strong>\uff1a\u653b\u51fb\u8005\u53ef\u4ee5\u8bbf\u95ee\u548c\u64cd\u7eb5\u5185\u90e8\u7f51\u7edc\u8bbe\u5907\uff0c\u5bfc\u81f4\u6570\u636e\u6cc4\u9732\u6216\u672a\u7ecf\u6388\u6743\u7684\u63a7\u5236\u3002<\/p>\n<\/li>\n

        2. \n

          \u6743\u9650\u63d0\u5347<\/strong>\uff1a\u5982\u679c\u5185\u90e8\u670d\u52a1\u5177\u6709\u63d0\u5347\u7684\u6743\u9650\uff0c\u653b\u51fb\u8005\u53ef\u4ee5\u5229\u7528\u5b83\u6765\u83b7\u5f97\u66f4\u9ad8\u7684\u8bbf\u95ee\u6743\u9650\u3002<\/p>\n<\/li>\n

        3. \n

          \u50f5\u5c38\u7f51\u7edc\u62db\u52df<\/strong>\uff1a\u901a\u8fc7 DNS \u91cd\u65b0\u7ed1\u5b9a\u53d7\u5230\u635f\u5bb3\u7684\u7269\u8054\u7f51\u8bbe\u5907\u53ef\u4ee5\u88ab\u62db\u52df\u5230\u50f5\u5c38\u7f51\u7edc\u4e2d\u4ee5\u8fdb\u884c\u8fdb\u4e00\u6b65\u7684\u6076\u610f\u6d3b\u52a8\u3002<\/p>\n<\/li>\n<\/ol>\n

          \u4e3a\u4e86\u89e3\u51b3\u4e0e DNS \u91cd\u65b0\u7ed1\u5b9a\u76f8\u5173\u7684\u95ee\u9898\uff0c\u5df2\u7ecf\u63d0\u51fa\u4e86\u5404\u79cd\u89e3\u51b3\u65b9\u6848\uff0c\u4f8b\u5982\uff1a<\/p>\n

            \n
          1. \n

            DNS \u54cd\u5e94\u9a8c\u8bc1<\/strong>\uff1aDNS \u89e3\u6790\u5668\u548c\u5ba2\u6237\u7aef\u53ef\u4ee5\u5b9e\u65bd\u54cd\u5e94\u9a8c\u8bc1\u6280\u672f\uff0c\u4ee5\u786e\u4fdd DNS \u54cd\u5e94\u5408\u6cd5\u4e14\u4e0d\u88ab\u7be1\u6539\u3002<\/p>\n<\/li>\n

          2. \n

            \u6269\u5c55\u540c\u6e90\u7b56\u7565<\/strong>\uff1a\u6d4f\u89c8\u5668\u53ef\u4ee5\u8003\u8651 IP \u5730\u5740\u4e4b\u5916\u7684\u5176\u4ed6\u56e0\u7d20\u6765\u786e\u5b9a\u4e24\u4e2a\u6765\u6e90\u662f\u5426\u76f8\u540c\u3002<\/p>\n<\/li>\n

          3. \n

            \u7f51\u7edc\u5206\u6bb5<\/strong>\uff1a\u6b63\u786e\u5206\u6bb5\u7f51\u7edc\u53ef\u4ee5\u9650\u5236\u5185\u90e8\u8bbe\u5907\u548c\u670d\u52a1\u906d\u53d7\u5916\u90e8\u653b\u51fb\u7684\u98ce\u9669\u3002<\/p>\n<\/li>\n<\/ol>\n

            \u4e3b\u8981\u7279\u5f81\u4ee5\u53ca\u4e0e\u7c7b\u4f3c\u672f\u8bed\u7684\u5176\u4ed6\u6bd4\u8f83\u4ee5\u8868\u683c\u548c\u5217\u8868\u7684\u5f62\u5f0f<\/h2>\n\n\n\n\n\n\n\n\n\n
            \u7279\u5f81<\/th>\nDNS \u91cd\u65b0\u7ed1\u5b9a\u653b\u51fb<\/th>\n\u8de8\u7ad9\u811a\u672c (XSS)<\/th>\n<\/tr>\n<\/thead>\n
            \u76ee\u6807<\/strong><\/td>\n\u8054\u7f51\u8bbe\u5907\u548c\u670d\u52a1<\/td>\n\u7f51\u7edc\u5e94\u7528\u7a0b\u5e8f\u548c\u7528\u6237<\/td>\n<\/tr>\n
            \u529f\u7ee9<\/strong><\/td>\n\u540c\u6e90\u7b56\u7565\u7ed5\u8fc7<\/td>\n\u4ee3\u7801\u6ce8\u5165\u548c\u4f1a\u8bdd\u52ab\u6301<\/td>\n<\/tr>\n
            \u8d77\u6e90<\/strong><\/td>\n\u6d89\u53ca\u64cd\u7eb5 DNS<\/td>\n\u76f4\u63a5\u9488\u5bf9\u7f51\u9875\u7684\u653b\u51fb<\/td>\n<\/tr>\n
            \u5f71\u54cd<\/strong><\/td>\n\u672a\u7ecf\u6388\u6743\u7684\u8bbf\u95ee\u548c\u63a7\u5236<\/td>\n\u6570\u636e\u76d7\u7a83\u548c\u64cd\u7eb5<\/td>\n<\/tr>\n
            \u9884\u9632<\/strong><\/td>\nDNS \u54cd\u5e94\u9a8c\u8bc1<\/td>\n\u8f93\u5165\u6e05\u7406\u548c\u8f93\u51fa\u7f16\u7801<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

            \u4e0e DNS \u91cd\u65b0\u7ed1\u5b9a\u653b\u51fb\u76f8\u5173\u7684\u672a\u6765\u524d\u666f\u548c\u6280\u672f<\/h2>\n

            \u968f\u7740\u4e92\u8054\u7f51\u548c\u7269\u8054\u7f51\u751f\u6001\u7cfb\u7edf\u7684\u4e0d\u65ad\u53d1\u5c55\uff0cDNS \u91cd\u65b0\u7ed1\u5b9a\u653b\u51fb\u7684\u5a01\u80c1\u4e5f\u5c06\u4e0d\u65ad\u53d1\u5c55\u3002\u672a\u6765\uff0c\u6211\u4eec\u53ef\u4ee5\u9884\u671f\uff1a<\/p>\n

              \n
            1. \n

              \u5148\u8fdb\u7684\u89c4\u907f\u6280\u672f<\/strong>\uff1a\u653b\u51fb\u8005\u53ef\u80fd\u4f1a\u5f00\u53d1\u66f4\u590d\u6742\u7684\u65b9\u6cd5\u6765\u9003\u907f\u68c0\u6d4b\u548c\u7f13\u89e3\u3002<\/p>\n<\/li>\n

            2. \n

              \u6539\u8fdb\u7684 DNS \u5b89\u5168\u6027<\/strong>\uff1aDNS \u57fa\u7840\u8bbe\u65bd\u548c\u534f\u8bae\u53ef\u80fd\u4f1a\u53d1\u5c55\uff0c\u4ee5\u63d0\u4f9b\u9488\u5bf9\u6b64\u7c7b\u653b\u51fb\u7684\u66f4\u5f3a\u5927\u7684\u5b89\u5168\u673a\u5236\u3002<\/p>\n<\/li>\n

            3. \n

              \u4eba\u5de5\u667a\u80fd\u9a71\u52a8\u7684\u9632\u5fa1<\/strong>\uff1a\u4eba\u5de5\u667a\u80fd\u548c\u673a\u5668\u5b66\u4e60\u5c06\u5728\u5b9e\u65f6\u8bc6\u522b\u548c\u963b\u6b62 DNS \u91cd\u65b0\u7ed1\u5b9a\u653b\u51fb\u65b9\u9762\u53d1\u6325\u81f3\u5173\u91cd\u8981\u7684\u4f5c\u7528\u3002<\/p>\n<\/li>\n<\/ol>\n

              \u5982\u4f55\u4f7f\u7528\u4ee3\u7406\u670d\u52a1\u5668\u6216\u5982\u4f55\u5c06\u4ee3\u7406\u670d\u52a1\u5668\u4e0e DNS \u91cd\u65b0\u7ed1\u5b9a\u653b\u51fb\u5173\u8054\u8d77\u6765<\/h2>\n

              \u4ee3\u7406\u670d\u52a1\u5668\u5728 DNS \u91cd\u65b0\u7ed1\u5b9a\u653b\u51fb\u65b9\u9762\u53d1\u6325\u53cc\u91cd\u4f5c\u7528\u3002\u4ed6\u4eec\u65e2\u53ef\u4ee5\u662f\u6f5c\u5728\u7684\u76ee\u6807\uff0c\u4e5f\u53ef\u4ee5\u662f\u6709\u4ef7\u503c\u7684\u9632\u5fa1\u8005\uff1a<\/p>\n

                \n
              1. \n

                \u76ee\u6807<\/strong>\uff1a\u5982\u679c\u4ee3\u7406\u670d\u52a1\u5668\u914d\u7f6e\u9519\u8bef\u6216\u5b58\u5728\u6f0f\u6d1e\uff0c\u5219\u53ef\u80fd\u6210\u4e3a\u653b\u51fb\u8005\u5bf9\u5185\u90e8\u7f51\u7edc\u53d1\u8d77 DNS \u91cd\u65b0\u7ed1\u5b9a\u653b\u51fb\u7684\u5165\u53e3\u70b9\u3002<\/p>\n<\/li>\n

              2. \n

                \u540e\u536b<\/strong>\uff1a\u53e6\u4e00\u65b9\u9762\uff0c\u4ee3\u7406\u670d\u52a1\u5668\u53ef\u4ee5\u5145\u5f53\u5ba2\u6237\u7aef\u548c\u5916\u90e8\u8d44\u6e90\u4e4b\u95f4\u7684\u4e2d\u4ecb\uff0c\u8fd9\u53ef\u4ee5\u5e2e\u52a9\u68c0\u6d4b\u548c\u9632\u6b62\u6076\u610f DNS \u54cd\u5e94\u3002<\/p>\n<\/li>\n<\/ol>\n

                \u5bf9\u4e8e OneProxy \u7b49\u4ee3\u7406\u670d\u52a1\u5668\u63d0\u4f9b\u5546\u6765\u8bf4\uff0c\u6301\u7eed\u76d1\u63a7\u548c\u66f4\u65b0\u5176\u7cfb\u7edf\u4ee5\u9632\u6b62 DNS \u91cd\u65b0\u7ed1\u5b9a\u653b\u51fb\u81f3\u5173\u91cd\u8981\u3002<\/p>\n

                \u76f8\u5173\u94fe\u63a5<\/h2>\n

                \u6709\u5173 DNS \u91cd\u65b0\u7ed1\u5b9a\u653b\u51fb\u7684\u66f4\u591a\u4fe1\u606f\uff0c\u60a8\u53ef\u4ee5\u6d4f\u89c8\u4ee5\u4e0b\u8d44\u6e90\uff1a<\/p>\n

                  \n
                1. DNS \u91cd\u65b0\u7ed1\u5b9a\uff0c\u4f5c\u8005\uff1aDan Kaminsky<\/a><\/li>\n
                2. \u4e86\u89e3 DNS \u91cd\u65b0\u7ed1\u5b9a \u65af\u5766\u798f\u5927\u5b66<\/a><\/li>\n
                3. \u4f7f\u7528\u6d4f\u89c8\u5668 RASP \u68c0\u6d4b DNS \u91cd\u65b0\u7ed1\u5b9a<\/a><\/li>\n<\/ol>\n

                  \u8bf7\u8bb0\u4f4f\uff0c\u4e86\u89e3\u6700\u65b0\u7684\u653b\u51fb\u6280\u672f\u5e76\u91c7\u7528\u6700\u4f73\u5b89\u5168\u5b9e\u8df5\u5bf9\u4e8e\u9632\u8303 DNS \u91cd\u65b0\u7ed1\u5b9a\u548c\u5176\u4ed6\u65b0\u51fa\u73b0\u7684\u5a01\u80c1\u81f3\u5173\u91cd\u8981\u3002<\/p>","protected":false},"featured_media":476922,"menu_order":0,"template":"","meta":{"_acf_changed":false,"content-type":"","inline_featured_image":false,"footnotes":""},"class_list":["post-476921","wiki","type-wiki","status-publish","has-post-thumbnail","hentry"],"acf":{"faq_title":"Frequently Asked Questions about DNS Rebinding Attack: An In-Depth Exploration<\/mark>","faq_items":[{"question":"What is DNS rebinding attack?","answer":"

                  DNS rebinding attack is a sophisticated method used by malicious actors to exploit web browsers and their security mechanisms. It leverages the inherent trust in DNS (Domain Name System) to bypass the Same-Origin Policy (SOP) enforced by web browsers. This attack can be used to target users visiting websites that interact with network services, such as routers, cameras, printers, or even internal corporate systems. By manipulating DNS responses, attackers can gain unauthorized access to sensitive information, execute arbitrary code, or carry out other malicious actions.<\/p>"},{"question":"How did DNS rebinding attack originate?","answer":"

                  The concept of DNS rebinding was first introduced by Daniel B. Jackson in his Master's thesis in 2005. However, it gained significant attention after Jeremiah Grossman's blog post in 2007, describing practical implementations to exploit web browsers and devices behind a victim's firewall.<\/p>"},{"question":"How does DNS rebinding attack work?","answer":"

                  DNS rebinding attack involves a multi-step process where attackers trick victims' web browsers into making unintended requests to arbitrary domains. The attack generally follows these steps:<\/p>

                  1. Initial Access: The victim visits a malicious website or clicks on a malicious link.<\/li>
                  2. Domain Resolution: The victim's browser sends a DNS request to resolve the domain associated with the malicious website.<\/li>
                  3. Short-lived Legitimate Response: The DNS response contains an IP address pointing to the attacker's server initially but quickly changes to a legitimate IP, such as that of a router or an internal server.<\/li>
                  4. Same-Origin Policy Bypass: Due to the short TTL of the DNS response, the victim's browser considers the malicious origin and the legitimate origin as the same.<\/li>
                  5. Exploitation: The attacker's JavaScript code can now make cross-origin requests to the legitimate domain, exploiting vulnerabilities in devices and services accessible from that domain.<\/li><\/ol>"},{"question":"What are the key features of DNS rebinding attack?","answer":"

                    DNS rebinding attack exhibits several key features that make it a potent threat:<\/p>

                    1. Stealthiness: It can evade traditional network security measures by leveraging the victim's browser and the DNS infrastructure.<\/li>
                    2. Cross-Origin Exploitation: Attackers can bypass SOP, enabling them to interact with networked devices or services that should be inaccessible from the web.<\/li>
                    3. Short Time Window: The attack relies on the short TTL value to quickly switch between the malicious and legitimate IP addresses, making detection and mitigation challenging.<\/li>
                    4. Device Exploitation: DNS rebinding often targets IoT devices and networked equipment that may have security vulnerabilities, turning them into potential attack vectors.<\/li>
                    5. User Context: The attack occurs in the context of the victim's browser, potentially allowing access to sensitive information or authenticated sessions.<\/li><\/ol>"},{"question":"What types of DNS rebinding attack exist?","answer":"

                      There are different variations of DNS rebinding attack techniques, each with specific characteristics and goals. Some common types include:<\/p>