Shrug Daemon Doing DNS the Hard Way Since 2015 - PowerPoint PPT Presentation

Oct 09, 2022 •637 likes •713 views

Shrug Daemon Doing DNS the Hard Way Since 2015 https://en.wikipedia.org/wiki/Ayn_Rand#/media/File:Objectivist1.jpg Problem Statement RIPE Atlas probes have 2 DNS resolvers: Resolver local to probe RIPE Atlas central resolvers

Shrug Daemon “Doing DNS the Hard Way Since 2015” https://en.wikipedia.org/wiki/Ayn_Rand#/media/File:Objectivist1.jpg
Problem Statement ● RIPE Atlas probes have 2 DNS resolvers: – Resolver local to probe – RIPE Atlas central resolvers ● Does not support alternate root servers – The Yeti project, as a fine example ● RIPE Atlas probes can send any DNS packet – Almost. ;)
Building a Resolver Just like you learned in school: 1. Start at root 2. Ask for record 3. If you get answer, done! 4. If you get delegation, follow that https://commons.wikimedia.org/wiki/File:DNS_hierarchy.png
Building a Resolver... in RIPE Atlas ● Use Cousteau and Sagan libraries ● Start from roots.txt (IANA or Yeti) ● Make DNS measurements from a probe ● Use the parsed result to follow the delegation chain ● Champagne
Live Demo
Further Ideas ● May be useful in detecting DNS censorship ● Next steps – Using the tool and collecting some data! – Possible “full” resolution? ● Crazy ideas – Use tun/tap interface to forward DNS packets to a RIPE Atlas measurement https://github.com/shane-kerr/ripe-atlas-shrugd

Recommend

Threads in Java Department of Computer Science University of Maryland, College Park Daemon

CMSC 132: Object-Oriented Programming II Threads in Java Department of Computer Science University of Maryland, College Park Daemon Threads Java threads types User Daemon Provide general services Typically never terminate

737 views • 14 slides

BIRD Internet Routing Daemon Ond rej Zaj cek CZ.NIC z.s.p.o. RIPE 66 BIRD overview

BIRD Internet Routing Daemon Ond rej Zaj cek CZ.NIC z.s.p.o. RIPE 66 BIRD overview BIRD Internet Routing Daemon Routing protocols BGP, OSPF and RIP IPv4 and IPv6 support Linux and BSD kernel support Free and open

241 views • 13 slides

BIRD Internet Routing Daemon Ond rej Zaj cek CZ.NIC z.s.p.o. 2015-02-16 Proceedings

BIRD Internet Routing Daemon Ond rej Zaj cek CZ.NIC z.s.p.o. 2015-02-16 Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada BIRD overview BIRD Internet Routing Daemon Routing protocols BGP, OSPF, RIP and BFD

630 views • 27 slides

vmd Reyk Flter reyk@openbsd.org About vmd vmd is a daemon responsible for the execution

vmd Reyk Flter reyk@openbsd.org About vmd vmd is a daemon responsible for the execution of virtual machines (VMs) on a host. vmd(8) interfaces with vmm(4) in the kernel It handles the VM setup, vCPUs, exists, and device layer

372 views • 8 slides

NFD Development Progress Beichuan Zhang The University Of Arizona NFD: NDN Forwarding Daemon A

NFD Development Progress Beichuan Zhang The University Of Arizona NFD: NDN Forwarding Daemon A year ago, we made the first public release Open source (GPL3+) New flexible packet format based on TLV Modular and extensible design

570 views • 25 slides

THE LIBRESWAN PROJECT An Internet Key Exchange (IKE) daemon for IPsec Enterprise IPsec

THE LIBRESWAN PROJECT An Internet Key Exchange (IKE) daemon for IPsec Enterprise IPsec based VPN solution Make encryption the default mode of communication Certifjcations (FIPS, Common Criteria, USGv6, etc.)

917 views • 25 slides

Libreswan Teaching old code new tricks! Libreswan is an IKE (Internet Key Exchange) daemon. Its

Libreswan Teaching old code new tricks! Libreswan is an IKE (Internet Key Exchange) daemon. Its origins can be traced back to the 90s. But what is IKE and why should it run on NetBSD? BSDCan 2020 Andrew Cagney freenode.net #swan cagney

681 views • 40 slides

Prescriptive Topology Daemon Dinesh G Dutt, Pradosh Mohapatra Cumulus Networks Problem statement

Prescriptive Topology Daemon Dinesh G Dutt, Pradosh Mohapatra Cumulus Networks Problem statement Data centers follow regular topologies Modular design that is repeated as the network grows Clusters or pods interconnected by another

232 views • 11 slides

mpd Multi-link PPP daemon Computer Center, CS, NCTU mpd http://mpd.sourceforge.net/ An

mpd Multi-link PPP daemon Computer Center, CS, NCTU mpd http://mpd.sourceforge.net/ An implementation of the multi-link PPP protocol for FreeBSD. Support PPP over PPTP or L2TP. PAP, CHAP, MS-CHAP or EAP authentication.

508 views • 12 slides

MPD Multi-link PPP daemon linpc Computer Center, CS, NCTU mpd Mpd is a netgraph(4) based

MPD Multi-link PPP daemon linpc Computer Center, CS, NCTU mpd Mpd is a netgraph(4) based implementation of the multi-link PPP protocol for FreeBSD /usr/ports/net/mpd5 pkg install mpd5 It supports several of the numerous PPP

718 views • 14 slides

Binding the Daemon FreeBSD Kernel Stack and Heap Exploitation Patroklos (argp) Argyroudis

Binding the Daemon FreeBSD Kernel Stack and Heap Exploitation Patroklos (argp) Argyroudis argp@census-labs.com Outline Introduction Why target the kernel? Why target FreeBSD? Background Related work Exploitation

1.55k views • 56 slides

Memcached Install, Overview & Benchmarks What is Memcached? Really, its Memcache-d (d as

Memcached Install, Overview & Benchmarks What is Memcached? Really, its Memcache-d (d as in daemon) TCP/IP service that allows you to store stuff in RAM, somewhat persistently Basically, a persistent hash table Super awesome

342 views • 13 slides

Internet Technologies Some sample questions for the exam F. Ricci 1 Questions 1. Is the

Internet Technologies Some sample questions for the exam F. Ricci 1 Questions 1. Is the number of hostnames (websites) typically larger, equal or smaller than the number of hosts running an http daemon? Explain why. 2. What is the main

346 views • 5 slides

HTCondor-CE: Troubleshooting ISGC 2019 - Taipei, Taiwan Brian Lin University of Wisconsin

HTCondor-CE: Troubleshooting ISGC 2019 - Taipei, Taiwan Brian Lin University of Wisconsin Madison Log Levels - Useful for temporary debugging Log level can be adjusted per daemon (e.g, SCHEDD_DEBUG ) or across all - daemons ( ALL_DEBUG )

570 views • 20 slides

Automount NFS Computer Center, CS, NCTU Automatic mounting Problems of /etc/fstab

Automount NFS Computer Center, CS, NCTU Automatic mounting Problems of /etc/fstab Maintenance of /etc/fstab in large network Crashed NFS server will make operation blocked automount daemon Mount filesystems when they are

238 views • 12 slides

Energy Aware Resource Management for Clusters of Web Servers Simon Kiertscher University of

Energy Aware Resource Management for Clusters of Web Servers Simon Kiertscher University of Potsdam Germany Before we start 2 Outline Cluster Basics Motivation Energy Saving Daemon (Cherub) Load Forecasting Evaluation

548 views • 50 slides

Buffer Overflows with Content 2 A Process Stack Buffer Overflow Common Techniques employed

1 Buffer Overflows with Content 2 A Process Stack Buffer Overflow Common Techniques employed in buffer overflow exploits to create backdoors Execution of additional network services via the INETD daemon The addition of new users

497 views • 30 slides

Cray Management Services (CMS) Group Charter The Problem with Log and State Information

Cray Management Services (CMS) Group Charter The Problem with Log and State Information Solutions CMS Log Manager Solutions CMS State Daemon Future Functionality Summary, Questions, and Contact Information

223 views • 10 slides

OPPORTUNISTIC ENCRYPTION USING IPSEC Linux Security Summit, Toronto August 2016 Presented by

OPPORTUNISTIC ENCRYPTION USING IPSEC Linux Security Summit, Toronto August 2016 Presented by Paul Wouters, RHEL Security THE LIBRESWAN PROJECT An Internet Key Exchange (IKE) daemon for IPsec Enterprise IPsec based VPN solution

736 views • 32 slides

Minijail: Sandboxing software running on Linux kernels Jorge Lucangeli Obes jorgelo@google.com

Minijail: Sandboxing software running on Linux kernels Jorge Lucangeli Obes jorgelo@google.com $ ps -eo pid,user,comm 1 root /sbin/init 2 root [kthreadd] ... 1468 message+ dbus-daemon --system --fork 1749 root

725 views • 38 slides

Processes Don Porter Portions courtesy Emmett Witchel 1 COMP 530: Operating Systems What is a

COMP 530: Operating Systems Processes Don Porter Portions courtesy Emmett Witchel 1 COMP 530: Operating Systems What is a process? Intuitively, one of these App App Daemon Libraries Libraries Libraries User Super- System Call Table

696 views • 37 slides

CS527 Software Security Web Security Mathias Payer Purdue University, Spring 2018 Mathias Payer

CS527 Software Security Web Security Mathias Payer Purdue University, Spring 2018 Mathias Payer CS527 Software Security Daemons / Services / Servers A daemon is a long running service that serves outside requests. A web server, a mail

503 views • 31 slides

4BSD UNIX Virtual Memory Page Replacement Algorithm The clock algorithm is implemented by the

4BSD UNIX Virtual Memory Page Replacement Algorithm The clock algorithm is implemented by the pageout 4BSD UNIX use a virtual memory with demand paging. daemon process. A global replacement policy and the clock (second A software clock

361 views • 4 slides