Home page logo
/

pen-test logo Penetration Testing mailing list archives

Re: bind9 crash
From: "Secure Scorp" <securescorp () gmail com>
Date: Fri, 11 Jul 2008 09:14:49 +0530

TCP 53 is used for DNS zone transfer.

You can use Zodiac', A DNS protocol analyzation and exploitation
program (http://www.packetfactory.net/projects/zodiac/) and/or  use
SamSpade  to perform DNS zone transfers. Also, Im sure you can use
NMAP to generate various types of scans on port 53.

Thanks,
Aditya Govind Mukadam


On Fri, Jul 11, 2008 at 6:14 AM, Patrick Webster <patrick () aushack com> wrote:

One thought - check if the DNS server supports TCP based DNS in
addition to UDP. TCP half-open DoS attack would use more resources and
packets than UDP attacks.

-Patrick

On Fri, Jul 11, 2008 at 2:46 AM, Ron Gutierrez <rgutie01 () gmail com> wrote:
I'm working on a project that requires me to find some ways to cause mayhem
to a network.
I'm trying to knock down a bind9 server and so far have been unsuccessful.
I'm running it on a server with 64 mb ram so that hopefully that would make
it easier to knock down with a small ddos attack but so far its only taking
up 6 percent of the memory with the amount queries I've been throwing at.

I'm not much a DNS guy. Do any of you guys know any bad bind configurations
that could cause it to perform terribly to the point that it'll crash.
Also If you know any for bind8 I could always switch to that. Thanks

--
Ron Gutierrez


------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes in Securing Web Applications
Get 45 Min Video and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------



------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes in
Securing Web Applications
Get 45 Min Video and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------


------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes in 
Securing Web Applications
Get 45 Min Video and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault