[Full-disclosure] DNS mining ?
hq4ever at gmail.com
Tue Apr 10 21:37:12 BST 2007
On 4/9/07, Valdis.Kletnieks at vt.edu <Valdis.Kletnieks at vt.edu> wrote:
> On Mon, 09 Apr 2007 16:31:02 +0300, Maxim Veksler said:
> > I have a domain name which has it's primary A record pointing at google.
> > This domain hasn't been published anywhere
> Note that there *do* exists feeds of things like "all domains registered in
> the last 24 hours",
That's a reasonable possibility. Are you suggesting some service scans
those lists and then produces statistical data from them? Could you
point me to such list, I'd be interested to know how it works.
> and other ways to get lists of things like "everything
> in *.com". So "never published" does *not* equate directly to "not findable".
OK, that is not practical. Scanning the whole DNS range for *.com of
what ever will taken a considerably long time.
> Did you check your nameserver logs for:
> a) Do you prohibit AXFR requests except from your secondaries?
> b) Do your secondaries prohibit AXFRs entirely?
> c) Has anybody *tried* to do an AXFR? If so, who?
I use the NS of my domain registar (gandi.net), even if their DNS
server was jeopardised - The web sites appearing on that list do no
all come from gandi.net.
"Free as in Freedom" - Do u GNU ?
Full-Disclosure is hosted and sponsored by Secunia.