An error is reported when parsing the domain name, there are more than two IPs #2
Comments
|
Hi, Thanks for your interest.
I don't think redirection could affect the attack. The reason I chose www.cnn.com is that when the user types this URL in Chrome, the initial request is sent via HTTP, and then it is redirected to its HTTPS site. You could monitor the traffic through the Chrome developer tool and verify that. If it is the same case for edition.cnn.com, you could also pick this one, but then you have to adjust some other URLs accordingly (e.g., I selected a few image URLs that belong to the same domain to keep the connection alive).
It is better to use a physical machine.
Yes. Generally, the closer the attacker is to the victim, the more likely he/she could succeed. |
|
Thank you very much for your answer. I also want to ask you a few questions.
4、 As mentioned in the discussion section of the paper, we can expand the threat model to consider servers that are wirelessly connected, e.g.,IoT devices.Is the attack on a wirelessly connected IoT device or a wirelessly connected server? |
l have some issues when running your code( on the branch for Windows.):
1、When I try to use www.cnn.com, it redirects to edition.cnn.com.So I changed the domain name of the attacked server to edition.cnn.com.But an error is reported when parsing the domain name, there are more than two IPs?
2、Should I continue to replace the attacked server or continue to use www.cnn.com or edition.cnn.com as the attacked server?
3. Does the attacker have to use a physical machine? Can I use the bridge mode of the virtual machine?
4. Can the attacker and the victim client be on the same LAN?
Looking forward to your answer
The text was updated successfully, but these errors were encountered: