Penetration Testing mailing list archives

Re: testing dns servers

From: bariswinston () yahoo com
Date: 16 Apr 2007 11:53:21 -0000

Hi,

Here are some additional controls in my mind below that are to be taken account,

1. make sure that any Everyone or Anyone group are not authorized to change or delete zone records,

2. make sure that DNS server has own reverse dns record in reverse lookup zone file,

3. make sure that any unauthorized host's dns record updates are not allowed

Baris Erdogan
 


------------------------------------------------------------------------
This List Sponsored by: Cenzic

Are you using SPI, Watchfire or WhiteHat?
Consider getting clear vision with Cenzic
See HOW Now with our 20/20 program!

http://www.cenzic.com/c/2020
------------------------------------------------------------------------

Current thread:

testing dns servers Zhihao (Apr 15)
- Re: testing dns servers mark foster (Apr 16)
- Re: testing dns servers killy (Apr 16)
- RE: testing dns servers Paul Melson (Apr 16)
- Re: testing dns servers Vishal Garg (Apr 16)
- <Possible follow-ups>
- Re: testing dns servers bariswinston (Apr 16)