Question
Can someone poison the DNS records?
So I’ve pointed my domain name from my registrar to DigitalOcean’s name servers. Since there is no authentication on DigitalOcean to ensure I own the domain before I make DNS records for it, surely its possible that someone could create records for it and hijack it (albeit briefly) to go to where ever they want?
I presume there is some system in place to stop the duplication of records for a particular domain name but propose they made the records before you. Also, I understand that I could narrow the window of attack by setting up my DNS records first before I point to the name servers. I’m just interested in seeing if it was possible.
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.
×