[DNSOP] [lauren@miscnote.net: difference between dns spoofing and dns hijacking?]

Stephane Bortzmeyer <bortzmeyer@nic.fr> Tue, 24 July 2018 08:44 UTC

Return-Path: <bortzmeyer@nic.fr>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost []) by ietfa.amsl.com (Postfix) with ESMTP id F0A96131045 for <dnsop@ietfa.amsl.com>; Tue, 24 Jul 2018 01:44:43 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.9
X-Spam-Status: No, score=-6.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id sEt4IrGwl2Je for <dnsop@ietfa.amsl.com>; Tue, 24 Jul 2018 01:44:41 -0700 (PDT)
Received: from mx4.nic.fr (mx4.nic.fr [IPv6:2001:67c:2218:2::4:12]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C5521130E1E for <dnsop@ietf.org>; Tue, 24 Jul 2018 01:44:40 -0700 (PDT)
Received: from mx4.nic.fr (localhost []) by mx4.nic.fr (Postfix) with SMTP id B1261280186 for <dnsop@ietf.org>; Tue, 24 Jul 2018 10:44:38 +0200 (CEST)
Received: by mx4.nic.fr (Postfix, from userid 500) id AAC1428031A; Tue, 24 Jul 2018 10:44:38 +0200 (CEST)
Received: from relay01.prive.nic.fr (relay01.prive.nic.fr [IPv6:2001:67c:2218:15::11]) by mx4.nic.fr (Postfix) with ESMTP id A22D2280186 for <dnsop@ietf.org>; Tue, 24 Jul 2018 10:44:38 +0200 (CEST)
Received: from b12.nic.fr (b12.tech.ipv6.nic.fr [IPv6:2001:67c:1348:7::86:133]) by relay01.prive.nic.fr (Postfix) with ESMTP id 9A18360F79E0 for <dnsop@ietf.org>; Tue, 24 Jul 2018 10:44:38 +0200 (CEST)
Received: by b12.nic.fr (Postfix, from userid 1000) id 8E3B5400AD; Tue, 24 Jul 2018 10:44:38 +0200 (CEST)
Date: Tue, 24 Jul 2018 10:44:38 +0200
From: Stephane Bortzmeyer <bortzmeyer@nic.fr>
To: dnsop@ietf.org
Message-ID: <20180724084438.dpqcm7nmbxf4lmng@nic.fr>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="fx47ixd2p4ahhmee"
Content-Disposition: inline
X-Operating-System: Debian GNU/Linux 9.5
X-Kernel: Linux 4.9.0-6-amd64 x86_64
X-Charlie: Je suis Charlie
Organization: NIC France
X-URL: http://www.nic.fr/
User-Agent: NeoMutt/20170113 (1.7.2)
X-Bogosity: No, tests=bogofilter, spamicity=0.000000, version=1.2.2
X-PMX-Version:, Antispam-Engine:, Antispam-Data: 2018.7.24.83916
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/LlH-IhxHbjr2WLshFFWnjAH6kck>
Subject: [DNSOP] [lauren@miscnote.net: difference between dns spoofing and dns hijacking?]
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 24 Jul 2018 08:44:44 -0000

Some work for draft-ietf-dnsop-terminology-ter? Define spoofing,
poisoning and hijacking?

--- Begin Message ---
I saw the info from google,

While the DNS hijacking involves a malware, the DNS Cache poisoning 
involves overwriting your local DNS cache with fake values that redirect 
your browser to malicious websites. ... Though DNS Cache Poisoning and 
DNS Hijacking are used interchangeably, there is a small difference 
between them.

Not very sure about the explanation.
Can you kindly expand it?

dns-operations mailing list
dns-operations mailing list
--- End Message ---