pen-test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

testing dns servers

from [Zhihao] [Permanent Link][Original]
To: pen-test@securityfocus.com
Subject: testing dns servers
From: Zhihao <zhihao@root.sg>
Date: Sun, 15 Apr 2007 14:49:37 +0800
Delivered-to: sp-com-lists@consult.net
Delivered-to: pentest-list2@consult.net
Delivered-to: mailing list pen-test@securityfocus.com
Delivered-to: moderator for pen-test@securityfocus.com
List-help: <mailto:pen-test-help@securityfocus.com>
List-id: <pen-test.list-id.securityfocus.com>
List-post: <mailto:pen-test@securityfocus.com>
List-subscribe: <mailto:pen-test-subscribe@securityfocus.com>
List-unsubscribe: <mailto:pen-test-unsubscribe@securityfocus.com>
Mailing-list: contact pen-test-help@securityfocus.com; run by ezmlm
Resent-date: Sun, 15 Apr 2007 14:28:05 -0600 (MDT)
Resent-from: pen-test-return-1078483967@securityfocus.com
Resent-message-id: <20070415202805.7055D23749D@outgoing3.securityfocus.com>
Resent-sender: listbounce@securityfocus.com
Sender: listbounce@securityfocus.com
Thread-index: Acd/KjjtDGrU8rH7Qf+pDprksgk2tw== 
Hi,

How would you guys test a dns server for holes?

Here are some that i thought of..

1. Make sure it does not allow recursive queries.
2. Make sure it does not allow zone transfers from unauthorized hosts.
3. Make sure it is not vulnerable to dns cache poisoning.

Anything other vectors we could look at?

Cheers.


------------------------------------------------------------------------
This List Sponsored by: Cenzic

Are you using SPI, Watchfire or WhiteHat?
Consider getting clear vision with Cenzic
See HOW Now with our 20/20 program!

http://www.cenzic.com/c/2020
------------------------------------------------------------------------
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Boot floppy, Morning Wood
Next by Date:  Re: Boot floppy, Packet Man
Previous by Thread:  FireCAT Firefox Catalog of Auditing exTensions V1.0 Released, SD List
Next by Thread:  Re: testing dns servers, mark foster
Indexes:  [Date] [Thread] [Top] [All Lists]