Home page logo
/

pen-test logo Penetration Testing mailing list archives

Re: question regarding nessus plug-in 10595 DNS AXFR
From: Ariel Martinez <ariel () muiscas udea edu co>
Date: Tue, 24 Feb 2004 20:06:48 -0500 (COT)

On Tue, 24 Feb 2004, cissper wrote:

[...]

In one of my scans, nessus reported a vulnerability allowing DNS zone
transfers (see below).  I have tried to verify this vulnerability
manually with nslookup and other tools. Apparently a manual DNS zone
transfer did not work! So I am just wondering if anybody knows what this
plug-in is exactly doing. I am not yet familiar with the scripting
language used.

I guess plugin tried an AXFR for a reverse zone not for a forward zone.
You can try dig(1) or host(1) from bind-utils to get the whole reverse
zone for 192.168.1.*:

$ dig @dns-server 1.168.192.in-addr.arpa axfr # You can append +notcp to 
force udp query.
 
$ host -l 1.168.192.in-addr.arpa dns-server

--
Ariel Martinez.


---------------------------------------------------------------------------
----------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault