Re: testing dns servers

To:	Zhihao <zhihao@root.sg>
Subject:	Re: testing dns servers
From:	killy <killfactory@gmail.com>
Date:	Sun, 15 Apr 2007 19:22:15 -0400
Cc:	pen-test@securityfocus.com
Delivered-to:	sp-com-lists@consult.net
Delivered-to:	pentest-list2@consult.net
Delivered-to:	mailing list pen-test@securityfocus.com
Delivered-to:	moderator for pen-test@securityfocus.com
Dkim-signature:	a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=RdZJ6cNHZvLt1Jt2l+FduEqEJRR7TJ+zPsU5/ii13UnY8Nx8FKqSIlv8sKyTryfScf/y2AyprSk7JJ6hsfOrNPexKL8v8+5PZoXV8lqbvJd6b06HSeLHDNS98KlwAuqBishnYxUuGI1lyFDDwSX7p6vlyvPGTzHnQyu+vtGyfi4=
Domainkey-signature:	a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=tU5wZyY4DMN3wYoxkwcAsjtYVcfE42yhzTD7gvuQZwxzS381ZiwagUw57vrait/sZfeC/Z6asxQ/Hy05J6rCCZ4PY5iFeSEOAxsdFoJRqDED6ig9AwRE3OLOGKNAxQuePHpCuyDUulPUhpO7vsDqQx7QVmtyJQ1BxpcySvV+vAQ=
In-reply-to:	<000301c77f2a$3eafc890$bc0f59b0$@sg>
List-help:	<mailto:pen-test-help@securityfocus.com>
List-id:	<pen-test.list-id.securityfocus.com>
List-post:	<mailto:pen-test@securityfocus.com>
List-subscribe:	<mailto:pen-test-subscribe@securityfocus.com>
List-unsubscribe:	<mailto:pen-test-unsubscribe@securityfocus.com>
Mailing-list:	contact pen-test-help@securityfocus.com; run by ezmlm
References:	<000301c77f2a$3eafc890$bc0f59b0$@sg>
Resent-date:	Mon, 16 Apr 2007 17:39:07 -0600 (MDT)
Resent-from:	pen-test-return-1078483970@securityfocus.com
Resent-message-id:	<20070416233907.9314E1479DA@outgoing2.securityfocus.com>
Resent-sender:	listbounce@securityfocus.com
Sender:	listbounce@securityfocus.com

nslookup, txdns,dig, host, bile suites, etc.

Checkout Metasploit and the milw0rm site too.

http://www.vulnerabilityassessment.co.uk/Penetration%20Test.html

-p1g

On 4/15/07, Zhihao <zhihao@root.sg> wrote:

Hi,

How would you guys test a dns server for holes?

Here are some that i thought of..

1. Make sure it does not allow recursive queries.
2. Make sure it does not allow zone transfers from unauthorized hosts.
3. Make sure it is not vulnerable to dns cache poisoning.

Anything other vectors we could look at?

Cheers.


------------------------------------------------------------------------
This List Sponsored by: Cenzic

Are you using SPI, Watchfire or WhiteHat?
Consider getting clear vision with Cenzic
See HOW Now with our 20/20 program!

http://www.cenzic.com/c/2020
------------------------------------------------------------------------



--
If you spend more on coffee than on IT security, you will be hacked.
What's more, you deserve to be hacked.
-- former White House cybersecurity czar Richard Clarke

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Are you using SPI, Watchfire or WhiteHat?
Consider getting clear vision with Cenzic
See HOW Now with our 20/20 program!

http://www.cenzic.com/c/2020
------------------------------------------------------------------------

<Prev in Thread]	Current Thread	[Next in Thread>
testing dns servers, Zhihao Re: testing dns servers, mark foster Re: testing dns servers, killy <= RE: testing dns servers, Paul Melson Re: testing dns servers, Vishal Garg Re: testing dns servers, bariswinston

Previous by Date:	Re: testing dns servers, mark foster
Next by Date:	RE: Retrieving Cached Domain Credentials from Vista, Paul Melson
Previous by Thread:	Re: testing dns servers, mark foster
Next by Thread:	RE: testing dns servers, Paul Melson
Indexes:	[Date] [Thread] [Top] [All Lists]