pen-test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: testing dns servers

from [bariswinston] [Permanent Link][Original]
To: pen-test@securityfocus.com
Subject: Re: testing dns servers
From: bariswinston@yahoo.com
Date: 16 Apr 2007 11:53:21 -0000
Delivered-to: sp-com-lists@consult.net
Delivered-to: pentest-list2@consult.net
Delivered-to: mailing list pen-test@securityfocus.com
Delivered-to: moderator for pen-test@securityfocus.com
List-help: <mailto:pen-test-help@securityfocus.com>
List-id: <pen-test.list-id.securityfocus.com>
List-post: <mailto:pen-test@securityfocus.com>
List-subscribe: <mailto:pen-test-subscribe@securityfocus.com>
List-unsubscribe: <mailto:pen-test-unsubscribe@securityfocus.com>
Mailing-list: contact pen-test-help@securityfocus.com; run by ezmlm
Resent-date: Mon, 16 Apr 2007 17:40:30 -0600 (MDT)
Resent-from: pen-test-return-1078483975@securityfocus.com
Resent-message-id: <20070416234030.00532148E4E@outgoing2.securityfocus.com>
Resent-sender: listbounce@securityfocus.com
Sender: listbounce@securityfocus.com 
Hi,

Here are some additional controls in my mind below that are to be taken account,

1. make sure that any Everyone or Anyone group are not authorized to change or 
delete zone records,

2. make sure that DNS server has own reverse dns record in reverse lookup zone 
file,

3. make sure that any unauthorized host's dns record updates are not allowed

Baris Erdogan
 


------------------------------------------------------------------------
This List Sponsored by: Cenzic

Are you using SPI, Watchfire or WhiteHat?
Consider getting clear vision with Cenzic
See HOW Now with our 20/20 program!

http://www.cenzic.com/c/2020
------------------------------------------------------------------------
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: windows 2003 server, killy
Next by Date:  Res: testing dns servers, Marcos Aurelio Rodrigues
Previous by Thread:  Re: testing dns servers, Vishal Garg
Next by Thread:  Res: testing dns servers, Marcos Aurelio Rodrigues
Indexes:  [Date] [Thread] [Top] [All Lists]