Re: DNS mining ?

["Maxim Veksler" <hq4ever () gmail com>]

On 4/9/07, Valdis.Kletnieks () vt edu <Valdis.Kletnieks () vt edu> wrote:
> On Mon, 09 Apr 2007 16:31:02 +0300, Maxim Veksler said:
> > I have a domain name which has it's primary A record pointing at google.
> > This domain hasn't been published anywhere
>
> Note that there *do* exists feeds of things like "all domains registered in
> the last 24 hours",

That's a reasonable possibility. Are you suggesting some service scans
those lists and then produces statistical data from them? Could you
point me to such list, I'd be interested to know how it works.

> and other ways to get lists of things like "everything
> in *.com".  So "never published" does *not* equate directly to "not findable".

OK, that is not practical. Scanning the whole DNS range for *.com of
what ever will taken a considerably long time.

> Did you check your nameserver logs for:
>
> a) Do you prohibit AXFR requests except from your secondaries?
> b) Do your secondaries prohibit AXFRs entirely?
> c) Has anybody *tried* to do an AXFR? If so, who?

I use the NS of my domain registar (gandi.net), even if their DNS
server was jeopardised - The web sites appearing on that list do no
all come from gandi.net.



-- 
Cheers,
Maxim Veksler

"Free as in Freedom" - Do u GNU ?

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/