Securing DNS Against Emerging Threats: A Hybrid Approach

by John Pescatore
Sept. 1, 2017 1 comment SANS Institute Apps & Hardening dns issues

This paper looks at the impact of mobility and new attack vectors on DNS-related risk and outlines use cases for securing DNS services more effectively. It also examines the use of a hybrid model of on-premises and cloud-based services to improve the security posture of organizations.

negrii_irina88 7 months, 3 weeks ago

Instead of allowing your internal DNS servers to perform recursion and contacting DNS servers itself, configure the internal DNS server to use a forwarder for all domains for which it is not authoritative.