IETF Logo Mail Archive

Re: Should a nameserver know about itself?

Mans Nilsson <mansaxel@sunet.se> Fri, 11 May 2001 08:51 UTC

Received: from nic.cafax.se ([192.71.228.17]) by ietf.org (8.9.1a/8.9.1a) with SMTP id EAA02482 for <dnsop-archive@odin.ietf.org>; Fri, 11 May 2001 04:51:44 -0400 (EDT)
Received: by nic.cafax.se (8.12.0.Beta5/8.12.0.Beta5) id f4B8MVJJ014459 for dnsop-outgoing; Fri, 11 May 2001 10:22:31 +0200 (MEST)
Received: from skybar.pilsnet.sunet.se (skybar.pilsnet.sunet.se [192.36.125.99]) by nic.cafax.se (8.12.0.Beta7/8.12.0.Beta5) with ESMTP id f4B8MVLt014454 for <dnsop@cafax.se>; Fri, 11 May 2001 10:22:31 +0200 (MEST)
Received: (from mansaxel@localhost) by skybar.pilsnet.sunet.se (8.9.3/8.9.3) id KAA13223 for dnsop@cafax.se; Fri, 11 May 2001 10:22:31 +0200 (CEST)
Date: Fri, 11 May 2001 10:22:31 +0200
From: Mans Nilsson <mansaxel@sunet.se>
To: dnsop@cafax.se
Subject: Re: Should a nameserver know about itself?
Message-ID: <20010511102230.H94312@sunet.se>
References: <Pine.BSF.4.21.0105110935470.48377-100000@julubu.staff.apnic.net> <Pine.LNX.4.30.0105102117300.2923-100000@artemas.reachin.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
X-Mailer: Mutt 1.0pre2i
In-Reply-To: <Pine.LNX.4.30.0105102117300.2923-100000@artemas.reachin.com>
X-URL: http://vvv.besserwisser.org
X-Purpose: More of everything NOW!
Sender: owner-dnsop@cafax.se
Precedence: bulk
X-MIME-Autoconverted: from 8bit to quoted-printable by nic.cafax.se id f4B8MVJJ014459
Content-Transfer-Encoding: 8bit
X-MIME-Autoconverted: from quoted-printable to 8bit by ietf.org id EAA02482

Subject: Re: Should a nameserver know about itself? Date: Thu, May 10, 2001 at 09:26:07PM -0700 Quoting Sam Trenholme (namedroppers@local.reachin.com):
> 
> My particular DNS server has this feature, which is enabled by default.
> When you send a MaraDNS name server this query:
> 
> erre-con-erre-cigarro.maradns.org. query txt class 1 (internet)
> 
> It sends back the version number of the server in question.  (The
> answer that the maradns.org. name servers return is "MaraDNS version
> number not available")
> 
> I know that some nameservers send me queries in this form:
> 
> version.bind. query txt class 3 (what class is class 3 anyway?)
> 
> Which may be script kiddies looking for older namservers to exploit, or
> could be dns admins seeing what I run.

Unbeknownst to you, those folks at Nominum (and their predecessor) have
put the same feature into BIND. Unless explicitly configured not to,
BIND till answer with its version as a TXT record whwen queried like so:

dig @localhost version.bind CHAOS TXT

and the answer comes through:

;; ANSWER SECTION:
version.bind.           0       CH      TXT     "9.1.1rc4"

Class 3 is CHAOS, for MIT Chaosnet.

(Guess I better upgrade...;-) 

-- 
Måns Nilsson		Systems Specialist
+46 70 681 7204		KTHNOC
			MN1334-RIPE

I wonder if I should put myself in ESCROW!!

v2.23.0 | Report a Bug | By Email