Hide your BIND version

Contributed by skreuzer

October 18, 2003

Tagged: Linux security

Any user can discover the version of bind you are running with the following command: nslookup -q=txt -class=CHAOS version.bin.remote.dns.server

To hide your version of bind, add the following value to named.conf
version "[SECURED]"
in the options section section as follows:
options { directory "/var/named"; version "[SECURED]"; };

and restarted named.

Previous recipe | Next recipe |

OliNether

Just wanted to correct a little TYPO :

to really check the version of bind remotely the command is :

$ nslookup -q=txt -class=CHAOS version.bind dns.server.tld

OliNether

BTW, since nslookup is deprecated, you can & should of course do the same with dig :

$ dig @dns.server.tld -c CH -t txt version.bind

blog comments powered by Disqus

POPULAR RECIPES
Hide your BIND version
Make Linux ignore a ping
Apache-Website Security
Defend Your Web Server Against Distributed Denial of Services (DDos) Attacks
View our Top Tens

TECH-RECIPES BLOGS
Facebook FishVille Cheat: Send Multiple Free Gifts to Your Neighbors
post release: Windows 7, homegroups and me
fall 2009 and some geek thoughts, reflections
Facebook Cafe World Cheat: Close Your Cafe When You are Away for Long Periods of Time (to preserve your Buzz Rating)
Facebook Cafe World Cheat: Serve Your Customers Instantly
Facebook Cafe World Cheat: Send Multiple Free Gifts to Your Neighbors
Windows 7 Quickie: Setting up TV recording and sharing to other Windows 7 computers (turn windows 7 into a dvr / media server)
Mafia Wars Cheat: Send Multiple Gifts to Your Friends

CATEGORIES

Hide your BIND version

Any user can discover the version of bind you are running with the following command: nslookup -q=txt -class=CHAOS version.bin.remote.dns.server

POPULAR RECIPES

TECH-RECIPES BLOGS