Penetration Testing mailing list archives
Re: BIND/DNS Version check
From: "Nexus" <nexus () patrol i-way co uk>
Date: Fri, 11 Apr 2003 18:43:02 +0100
----- Original Message ----- From: "Asim Shaikh" <wezmaster () hotmail com> [snip]
I would like to know if there is any tool out there which can check for version of BIND/DNS running on the server.. or a scanner which can scan
for
the possible BIND/DNS vulnerabilites.. I would like to know tools available on both paltform *nix and also Win32.
You can use nslookup or dig, one or both of which will usually be on either Win32 or *NIX. nslookup -q=txt -class=chaos version.bind ns0.example.com or dig @ns0.example.com -c chaos version.bind txt and look at http://www.isc.org/products/BIND/bind-security.html for any results you get. Cheers. -------------------------------------------------------------- Costs are climbing and complaints are rising as SPAM overloads your e-mail servers and Inboxes SurfControl E-mail Filter puts the brakes on spam & viruses and gives you the reports to prove it. http://www.securityfocus.com/SurfControl-pen-test2 Download a free trial and see just what's going in and out of your organization. --------------------------------------------------------------
Current thread:
- BIND/DNS Version check Asim Shaikh (Apr 11)
- Re: BIND/DNS Version check Rus Foster (Apr 11)
- Re: BIND/DNS Version check Sebastian Jaenicke (Apr 12)
- Re: BIND/DNS Version check sysadmin (Apr 12)
- Re: BIND/DNS Version check Nexus (Apr 12)
- <Possible follow-ups>
- Re: BIND/DNS Version check Muhammad Faisal Rauf Danka (Apr 12)
- Re: BIND/DNS Version check Rus Foster (Apr 11)