Re: DNS Records

Wed, 18 Jun 2003 09:25:02 -0700 




If the DNS server is properly configured you wont'be able to gather
much data. But there are some techniques:

1) "ls -d".
2) Remote replication using a DNS server you own.
3) Using tools (e.g. DNSDigger).
4) Dictionary based DNS scan

Whenever doing this it is strongly recommended to proxy or socksify
your connections throughout as many servers as you can find. Most
IDSes and log correlation tools will be able to detect your DNS
queries and handle is as hostile behavior.

Regards,

Alberto Cozer
Security Outsource Director, Future Technologies Digital Security
IBM Certified AIX System Specialist
Checkpoint Certified Security Expert, CCSE NG
[EMAIL PROTECTED]
http://www.fti.com.br



                                                                                       
                                                
                      "Fred Dirkse -                                                   
                                                
                      OIC Group, Inc."         To:       <[EMAIL PROTECTED]>           
                                
                      <[EMAIL PROTECTED]        cc:                                    
                                                 
                      et>                      Subject:  DNS Records                   
                                                
                                                                                       
                                                
                      17/06/2003 18:26                                                 
                                                
                                                                                       
                                                




Is it possible to point to a DNS server and somehow get ALL records
from it
(ie - return all the domain records that server is authoratative for)?
If so, how? and how could one stop it from happening if so?

Regards,
Fred


---------------------------------------------------------------------------

Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top
analysts!
The Gartner Group just put Neoteris in the top of its Magic Quadrant,
while InStat has confirmed Neoteris as the leader in marketshare.

Find out why, and see how you can get plug-n-play secure remote access
in
about an hour, with no client, server changes, or ongoing maintenance.

Visit us at: http://www.neoteris.com/promos/sf-6-9.htm
----------------------------------------------------------------------------





---------------------------------------------------------------------------
Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts!
The Gartner Group just put Neoteris in the top of its Magic Quadrant,
while InStat has confirmed Neoteris as the leader in marketshare.
     
Find out why, and see how you can get plug-n-play secure remote access in
about an hour, with no client, server changes, or ongoing maintenance.
          
Visit us at: http://www.neoteris.com/promos/sf-6-9.htm
----------------------------------------------------------------------------























					Reply via email to