White Hat Can Benefit From Archaic Network Commands
Investigating intrusions has challenges beyond normal Blue Team or even Red Team interests. However, an alert system administrator may become aware of an intrusion while it is STILL IN PROGRESS: At that time, the old DOS command "fflush," which instructs the D(omain) N(ame) S(erver) to REASSIGN ALL IP addresses, would be of assistance to him. After the server followed the instruction (which can take fifteen minutes or so,) the bad guys would be faced with searching many local IP addresses to identify the admin's address, before the bad guys could resume the assault. This is less useful to a webmaster since his IP address is available by presenting his site name to DNS outright, as soon as it is re-assigned. Likewise, many applications require a static IP address. To assist the situation, we can point out that "flush" (note: only one -1- "f") deletes all local DNS cache info. This can assist network requests in obtaining correct IP info to communicate o...