基于dns的大学防垃圾邮件程序检测[外文翻译].rar
基于dns的大学防垃圾邮件程序检测[外文翻译],基于dns的大学防垃圾邮件程序检测[外文翻译]包含中文翻译和英文原文,内容详细完整,建议下载参考!中文: 5200 字英文: 14900字符摘要:从2007年4月1日到2008年4月30日,我们在dns查询流量问题上进行了一个熵的研究,研究是通过一个大学校园网络外面到顶端的域名解析服务器,在其pc房终端上查询反向解析。...
该文档为压缩文件,包含的文件列表如下:
内容介绍
原文档由会员 xiaowei 发布
基于DNS的大学防垃圾邮件程序检测[外文翻译]
包含中文翻译和英文原文,内容详细完整,建议下载参考!
中文: 5200 字
英文: 14900字符
摘要:从2007年4月1日到2008年4月30日,我们在DNS查询流量问题上进行了一个熵的研究,研究是通过一个大学校园网络外面到顶端的域名解析服务器,在其pc房终端上查询反向解析。下面是有意思的发现:(1)在2008年1月17日,DNS查询流量主要是被几个特殊的IP地址以他们的查询关键字支配(2)我们在PC房的在几个特殊关键字上,IP地址被发现的终端上进行了辩证式的分析,进而推断出一个结论,在插入基于关键磁盘存储的USB时,PCs变成垃圾邮件僵尸机。
1.引言
最近,我们报道说,在校园网内,当独特的源IP地址的垃圾邮件程序增加时基于DNS查询的DNS查询数据包流量熵在校园网外的关键字大大减少。
在这份论文中,我们在PTR记录资源上进行了熵分析,它是基于校园网络外部的DNS查询包流量 ......
Abstract
We carried out an entropy study on the DNS query traffic from the outside of a university campus network to the top domain DNS server when querying about reverse resolution on the PC room terminals through April 1st, 2007 to April 30th, 2008. The following interesting results are given: (1) In January 17th, 2008, the DNS query traffic is mainly dominated by several specific IP addresses as their query keywords. (2) We carried out forensic analysis on the PC room terminals in which IP addresses are found in the several specific keywords and it is concluded that the PCs become spam bots when inserting USB based key disk storage.
1. Introduction
Recently, we reported that the DNS query keywords based entropy in the DNS query packet traffic from the outside of the campus network decreases considerably while the unique source IP addresses based entropy increases when the spam bots activity is high in the campus network [1].
In this paper, we carried out entropy analysis on the PTR resource record (RR)-based DNS query packets traffic from the outside of the campus network ......
包含中文翻译和英文原文,内容详细完整,建议下载参考!
中文: 5200 字
英文: 14900字符
摘要:从2007年4月1日到2008年4月30日,我们在DNS查询流量问题上进行了一个熵的研究,研究是通过一个大学校园网络外面到顶端的域名解析服务器,在其pc房终端上查询反向解析。下面是有意思的发现:(1)在2008年1月17日,DNS查询流量主要是被几个特殊的IP地址以他们的查询关键字支配(2)我们在PC房的在几个特殊关键字上,IP地址被发现的终端上进行了辩证式的分析,进而推断出一个结论,在插入基于关键磁盘存储的USB时,PCs变成垃圾邮件僵尸机。
1.引言
最近,我们报道说,在校园网内,当独特的源IP地址的垃圾邮件程序增加时基于DNS查询的DNS查询数据包流量熵在校园网外的关键字大大减少。
在这份论文中,我们在PTR记录资源上进行了熵分析,它是基于校园网络外部的DNS查询包流量 ......
Abstract
We carried out an entropy study on the DNS query traffic from the outside of a university campus network to the top domain DNS server when querying about reverse resolution on the PC room terminals through April 1st, 2007 to April 30th, 2008. The following interesting results are given: (1) In January 17th, 2008, the DNS query traffic is mainly dominated by several specific IP addresses as their query keywords. (2) We carried out forensic analysis on the PC room terminals in which IP addresses are found in the several specific keywords and it is concluded that the PCs become spam bots when inserting USB based key disk storage.
1. Introduction
Recently, we reported that the DNS query keywords based entropy in the DNS query packet traffic from the outside of the campus network decreases considerably while the unique source IP addresses based entropy increases when the spam bots activity is high in the campus network [1].
In this paper, we carried out entropy analysis on the PTR resource record (RR)-based DNS query packets traffic from the outside of the campus network ......
