Penetration Testing mailing list archives
Re: bind9 crash
From: "Secure Scorp" <securescorp () gmail com>
Date: Fri, 11 Jul 2008 09:14:49 +0530
TCP 53 is used for DNS zone transfer. You can use Zodiac', A DNS protocol analyzation and exploitation program (http://www.packetfactory.net/projects/zodiac/) and/or use SamSpade to perform DNS zone transfers. Also, Im sure you can use NMAP to generate various types of scans on port 53. Thanks, Aditya Govind Mukadam On Fri, Jul 11, 2008 at 6:14 AM, Patrick Webster <patrick () aushack com> wrote:
One thought - check if the DNS server supports TCP based DNS in addition to UDP. TCP half-open DoS attack would use more resources and packets than UDP attacks. -Patrick On Fri, Jul 11, 2008 at 2:46 AM, Ron Gutierrez <rgutie01 () gmail com> wrote:I'm working on a project that requires me to find some ways to cause mayhem to a network. I'm trying to knock down a bind9 server and so far have been unsuccessful. I'm running it on a server with 64 mb ram so that hopefully that would make it easier to knock down with a small ddos attack but so far its only taking up 6 percent of the memory with the amount queries I've been throwing at. I'm not much a DNS guy. Do any of you guys know any bad bind configurations that could cause it to perform terribly to the point that it'll crash. Also If you know any for bind8 I could always switch to that. Thanks -- Ron Gutierrez ------------------------------------------------------------------------ This list is sponsored by: Cenzic Top 5 Common Mistakes in Securing Web Applications Get 45 Min Video and PPT Slides www.cenzic.com/landing/securityfocus/hackinar ------------------------------------------------------------------------------------------------------------------------------------------------ This list is sponsored by: Cenzic Top 5 Common Mistakes in Securing Web Applications Get 45 Min Video and PPT Slides www.cenzic.com/landing/securityfocus/hackinar ------------------------------------------------------------------------
------------------------------------------------------------------------ This list is sponsored by: Cenzic Top 5 Common Mistakes in Securing Web Applications Get 45 Min Video and PPT Slides www.cenzic.com/landing/securityfocus/hackinar ------------------------------------------------------------------------
Current thread:
- bind9 crash Ron Gutierrez (Jul 10)
- RE: bind9 crash Trent Williams (Jul 10)
- Re: bind9 crash Patrick Webster (Jul 10)
- Re: bind9 crash Secure Scorp (Jul 10)
- Re: bind9 crash Tonnerre Lombard (Jul 11)
- Re: bind9 crash Secure Scorp (Jul 10)
- Re: bind9 crash Jon Kibler (Jul 11)
- RE: bind9 crash Maxime Ducharme (Jul 11)
- Re: bind9 crash pinowudi (Jul 12)
- Re: bind9 crash White Hat (Jul 12)