≡ Menu

Bind dns

Q. How do I verify that my ISP or my own recursive resolvers are free from DNS cache poisoning bug that is promised full disclosure of the flaw by Dan on August 7 at the Black Hat conference? How do I test my dns server for DNS cache pollution or DNS Cache Poisoning bug?
[click to continue…]

Q. BIND 9 is part of core FreeBSD 7.x. How do I apply BIND 9 security patch under FreeBSD 7.x? Do I need to fetch entire source (buildworld) to patch BIND 9? How do I patch up recent BIND 9 DNS cache poisoning bug?
[click to continue…]

I'm trying to get data (AXFR query) from master tinydns server to secondary DNS server using tcpclient as follows:
tcpclient -v a.ns.example.com 53 axfr-get example.com example.com example.com.tmp

But I'm getting an error which read as follows:

>axfr-get: fatal: unable to parse AXFR results: protocol error

How do I fix this problem?
[click to continue…]

How To Hide BIND DNS Sever Version

Q. How do I hide my dns server version number from command such as:
dig @ns1.example.com -c CH -t txt version.bind

How do I hide version under BIND9 Linux / UNIX systems?
[click to continue…]

Q. My local nameserver root zone file is outdated. It has no information about IPv6 and recently changed root server IP address. How do I update my root hints data file under Debian and Red Hat Bind 9 server?
[click to continue…]

Q. I've 3 corporate domains registered with Go Daddy. Recently we setup our own nameserver using BIND9 under Linux. My setup is as follows:
example.com domain

However, when I try to change nameserver using Go Daddy domain control panel, I get an error that read as follows:

Errors were detected.

How do I configure my server to avoid errors?
[click to continue…]

How To Set Caching DNS Server

Q. How do I set caching dns server to speed up dns lookup for my LAN (500 PC)? The DNS lookups creating a lot of network activity. There are a few times when this causes performance issues. How do I configure caching dns under Debian Linux?
[click to continue…]