CNiping攻击是最近才出现的一种利用DNS漏洞的攻击方式,破坏性强.从DNS协议的改进和主机的安全加强入手,对CNiping攻击屏蔽.此外结合SVM方法的搜集和分析模型帮助管理员彻底杜绝CNiping攻击.%Cniping is one of DNS' back-door attacks in the internet. The attackers attempt to spoof the root server of DNS in order to cheat users or steal their private messages. We exploit a support vector machine (SVM) ,to solve the Cniping problem and compare with RBFNN( Radial-Basis Function Neural Network) ,which is better to detect Cniping. The main advantage of this detection method is that it has the ability to detect distribute attacks. With tools like iptables we can absolutely ban this attack.
展开▼
