Pantek Library
Hosting Provided By
CybrHost
High Speed Hosting
Mailing Lists: securityfocus.com > security-basics > 03 > 064628.html (Request Expert securityfocus.com Support)

Re: DNS Records

From: Alberto Cozer <acozer(at)fti.com.br>
Date: Wed Jun 18 2003 - 10:41:38 EDT

If the DNS server is properly configured you wont'be able to gather much data. But there are some techniques:

  1. "ls -d".
  2. Remote replication using a DNS server you own.
  3. Using tools (e.g. DNSDigger).
  4. Dictionary based DNS scan

Whenever doing this it is strongly recommended to proxy or socksify your connections throughout as many servers as you can find. Most IDSes and log correlation tools will be able to detect your DNS queries and handle is as hostile behavior.

Regards,

Alberto Cozer
Security Outsource Director, Future Technologies Digital Security IBM Certified AIX System Specialist
Checkpoint Certified Security Expert, CCSE NG acozer@fti.com.br
http://www.fti.com.br 

                                                                                                                                       
                      "Fred Dirkse -                                                                                                   
                      OIC Group, Inc."         To:                                                  
                                            Subject:  DNS Records                                                                   
                                                                                                                                       
                      17/06/2003 18:26

Is it possible to point to a DNS server and somehow get ALL records from it
(ie - return all the domain records that server is authoratative for)? If so, how? and how could one stop it from happening if so?

Regards,
Fred

Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts!
The Gartner Group just put Neoteris in the top of its Magic Quadrant, while InStat has confirmed Neoteris as the leader in marketshare.

Do you need help?X

Find out why, and see how you can get plug-n-play secure remote access in
about an hour, with no client, server changes, or ongoing maintenance.

Visit us at: http://www.neoteris.com/promos/sf-6-9.htm


Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts! The Gartner Group just put Neoteris in the top of its Magic Quadrant, while InStat has confirmed Neoteris as the leader in marketshare.      

Find out why, and see how you can get plug-n-play secure remote access in about an hour, with no client, server changes, or ongoing maintenance.           

Visit us at: http://www.neoteris.com/promos/sf-6-9.htm

Received on Wed Jun 18 12:35:56 2003

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:04:53 EDT

Contact Us  Legal Notices  Order Services Online 
Pantek Home  Privacy Policy  IT news  Site Map  Pantek Library