It is B because a sinkhole redirects the users to a different site. Can be used by attackers and security. It is not C because C mentions capturing traffic, not redirection.
A DNS sinkhole is specifically used to capture traffic to known-malicious domains. When a DNS sinkhole is in place, requests to malicious domains are redirected to a controlled server, preventing the malicious traffic from reaching its intended destination.
Here's why:
A DNS sinkhole is a technique used to redirect DNS queries for malicious domains to a controlled server, typically a non-existent or "sinkhole" server, instead of the actual malicious server. This allows organizations to intercept and block traffic to known-malicious domains, preventing users from accessing malicious content or communicating with command-and-control servers operated by attackers.
This was my initial understanding of a sinkhole
A DNS sinkhole, also known as a sinkhole server, Internet sinkhole, or Blackhole DNS[1] is a Domain Name System (DNS) server that has been configured to hand out non-routable addresses for a certain set of domain names. Computers that use the sinkhole fail to access the real site.[2] The higher up the DNS resolution chain the sinkhole is, the more requests will fail, because of the greater number of lower nameservers that in turn serve a greater number of clients. Some of the larger botnets have been made unusable by top-level domain sinkholes that span the entire Internet.[3] DNS Sinkholes are effective at detecting and blocking bots and other malicious traffic.
DNS sinkholing is used to provide wrong DNS resolution and alternate the path of the users to different resources instead of the malicious or non-accessible content. A sinkhole is a way of redirecting malicious internet traffic so that it can be captured and analyzed by security analysts. Sinkholes are most often used to seize control of botnets by interrupting the DNS names of the botnet that is used by the malware.
https://resources.infosecinstitute.com/topics/general-security/dns-sinkhole/
This section is not available anymore. Please use the main Exam Page.SY0-601 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
johnny3991t
Highly Voted 1 year, 2 months agoplopeup
Most Recent 9 months, 3 weeks agoJasonMunoz
9 months agoGeronemo
12 months agorussian
1 year agoad61da2
1 year agomemodrums
1 year, 2 months agoMortG7
1 year, 3 months agoRowdy_47
1 year, 6 months agoGwcan
1 year, 6 months agoHibiww
1 year, 6 months agoGwcan
1 year, 6 months agojwoyer001
1 year, 6 months ago