Merit Network
Can't find what you're looking for? Search the Mail Archives.
  About Merit   Services   Network   Resources & Support   Network Research   News   Events   Home

Discussion Communities: Merit Network Email List Archives

North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: Question about strain on the A root server

  • From: Andrew Brown
  • Date: Sun Apr 23 15:57:53 2000

>>    binfo.c   =  Bind Version Checker
>>    'binfo' is a quick little script to pull back the version
>>    of named running on a remote nameserver. This is handy
>>    for
>>    comparing it to a list of known vulnerable versions of 
>>    named/bind. Previous to this, it took a few commands to
>>    extract out the version.
>
>It seems to have been written more of not as a DNS admin convenience,
>but more as for inclusion into rootkit type packages, IMO.

perhaps, but it's certainly (a) not malicious or (b) gonna swamp the
root servers.

>A few commands? More like one :)
>
>$ nslookup -q=txt -class=chaos version.bind <nameserver>

or dig version.bind chaos txt @nameserver  :)

>And here's how to disable giving out that information to untrusted hosts
>or networks:
>
>in named.conf, set up something like this (*NOT* in the options section):
>...
>Now, create a file called 'chaos' (in same directory where your zone
>files lives) with something like:
>...

been there, done that.  and it's interesting to see all the people who
are checking out your name server after their addresses get logged for
hitting the acl.

-- 
|-----< "CODE WARRIOR" >-----|
codewarrior@daemon.org             * "ah!  i see you have the internet
twofsonet@graffiti.com (Andrew Brown)                that goes *ping*!"
andrew@crossbar.com       * "information is power -- share the wealth."





Discussion Communities


About Merit | Services | Network | Resources & Support | Network Research
News | Events | Contact | Site Map | Merit Network Home


Merit Network, Inc.