40% of websites may be controlled due to a domain name system error

In the process of analyzing the behavior of Internet addresses, some security experts found that hackers could control more than one-third of websites with simple tricks. Therefore, they require a "overhaul" of the domain structure to fix the problem.

Every time a user enters a site, their computer will query one of the "Net directories", or domain servers, to determine where the site is located. According to Professor Emin Gun Sirer at Cornell University (US), an average of 46 computers (saving different information about components of the Net address) will be searched to find out the true location of a dotcom site. . However, the link between these governance systems opens up many holes, enabling hackers to easily exploit and control.

The Cornell University team analyzed nearly 600,000 computers and confirmed that 17% of the Internet address book servers were also affected by normal exploits with simple code.

The US Federal Bureau of Investigation website has been affected by this error. Although 5 computers that are referring to fbi.gov sites are safe, one of them is linked to previously unpatched vulnerability systems. This computer was fixed after Sirer informed the FBI, but hundreds of thousands of other sites are still suffering from similar problems.

Sirer claims that if these exploits are combined with denial of service (DDoS) attacks, 85% of the Internet will be at risk of being controlled. At that time, the user computer has no choice but to look up the website address through the controlled servers.

" Maybe the hacker has done that, but I don't know it ," Sirer said. " The domain name system has been successful beyond our imagination, but anyway, it is about to expire. We need to consider the option of building a new Internet address structure, replacing the current hierarchical structure. with solid peer structure and harder to control ".

TN