説明
We carried out an entropy study on the DNS query traffic from the outside of a university campus network to the top domain DNS server when querying about reverse resolution on the PC room terminals through April 1st, 2007 to April 30th, 2008. The following interesting results are given: (1) In January 17th, 2008, the DNS query traffic is mainly dominated by several specific IP addresses as their query keywords. (2) We carried out forensic analysis on the PC room terminals in which IP addresses are found in the several specific keywords and it is concluded that the PCs become spam bots when inserting USB based key disk storage.
収録刊行物
-
- International Journal of Intelligent Engineering and Systems
-
International Journal of Intelligent Engineering and Systems 2 11-18, 2008-11-01
The Intelligent Networks and Systems Society