North American Network Operators Group|
Date Prev | Date Next |
Date Index |
Thread Index |
Author Index |
Re: Question about strain on the A root server
- From: Andrew Brown
- Date: Sun Apr 23 15:57:53 2000
>> binfo.c = Bind Version Checker
>> 'binfo' is a quick little script to pull back the version
>> of named running on a remote nameserver. This is handy
>> comparing it to a list of known vulnerable versions of
>> named/bind. Previous to this, it took a few commands to
>> extract out the version.
>It seems to have been written more of not as a DNS admin convenience,
>but more as for inclusion into rootkit type packages, IMO.
perhaps, but it's certainly (a) not malicious or (b) gonna swamp the
>A few commands? More like one :)
>$ nslookup -q=txt -class=chaos version.bind <nameserver>
or dig version.bind chaos txt @nameserver :)
>And here's how to disable giving out that information to untrusted hosts
>in named.conf, set up something like this (*NOT* in the options section):
>Now, create a file called 'chaos' (in same directory where your zone
>files lives) with something like:
been there, done that. and it's interesting to see all the people who
are checking out your name server after their addresses get logged for
hitting the acl.
|-----< "CODE WARRIOR" >-----|
email@example.com * "ah! i see you have the internet
firstname.lastname@example.org (Andrew Brown) that goes *ping*!"
email@example.com * "information is power -- share the wealth."