DOC-12327 - DNS Blackhole Detection System

Summary:

The document outlines the setup and configuration of the DNS Blackhole Detection System as a tool for filtering significant DNS logs within an Enterprise Security Module (ESM). It is designed to act as a "black hole" for less important data, focusing on key request information. Created by Daniel Slack and later modified by Luke LeBoeuf, this system is available for download in .docx format with a file size of 57.7 KB. Additionally, the document includes a user interface screenshot from iRock, a web-based communication tool developed by Jive Software, which displays various sections such as header and navigation links, software version information, main sections like "Rooms" and "Contacts," detailed views in the "Viewing now" section, status indicators for contacts, options for managing notifications and connection status, and a legal footer.

Details:

The "DNS Blackhole Detection System" is a solution designed as a workaround to collect DNS logs within an Enterprise Security Module (ESM). Its purpose is to filter and focus on significant request information by acting as a "black hole" for less important data. This document outlines the high-level overview of setting up and configuring this system, providing guidance for organizations looking to implement such a solution. The capability was created by Daniel Slack and later modified by Luke LeBoeuf; it is version 2 and available for download in a .docx format with a file size of 57.7 KB. This appears to be a user interface screen capture or screenshot of a web-based communication tool called iRock, developed by Jive Software. The URL provided is https://irock.jiveon.com. Here's a summary of the information displayed on the screen: 1. **Header and Navigation**: At the top, there are navigation links including "Home," "Top of page," and "Help." 2. **Software Version Information**: Below the header, it mentions Jive Software Version: 8.0.0.0 8c3.1, revision: 20140911132753.fcfdf12.release_8c3. This indicates the version and build details of the software being used. 3. **Main Sections**: The main sections include "Rooms," "Contacts," and a section titled "Viewing now." 4. **Detailed View in "Viewing Now" Section**: Inside this section, there is a count indicating that currently 1 person is viewing: "Viewing now (1)." There's also an option to start a conversation ("Start Conversation"). 5. **Status Indicators for Contacts**: Below the main sections, you can find various status indicators for contacts under the heading "Contacts": Available, Busy, Invisible, and Offline. 6. **Notifications and Connection Status**: The user interface includes options for managing web notifications (off) and displaying connection status with a message: "Connection Lost" and an option to reload the page. 7. **Version Footer**: At the bottom, it mentions the copyright information (© 2007-2014 Jive Software), followed by legal links ("Home," "Top of page," and "Help"). This screenshot seems to be from a user interface of an application where users can communicate or interact through various web features provided by iRock, possibly part of a corporate communication suite.