One or more nameservers responded to version queries
I tested with this site DNS tools | Manage Monitor Analyze | DNSstuff and I get
Nameserver software version
One or more nameservers responded to version queries. This can be considered a breach of security. If a malicious person or program had access to a version-specific exploit for your DNS server, displaying the version info openly will make their attack much easier. This should be removed or obscured. The nameservers that responded to version queries are:
I found these threads
Nameserver software version
How to disable BIND version querying??? help
but I cannot find any "version" instance in /etc/named.conf
-
Hi, If you have a remote server as Linux, you can use the dig tool to find the version: # dig @ version.bind ------------------------------- ------------------------------- ; <<>> DiG 9.9.4-RedHat-9.9.4-29.el7_2.4 <<>> @ version.bind chaos TXT ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 1865 ;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 1 ;; WARNING: recursion requested but not available ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ;; QUESTION SECTION: ;version.bind. CH TXT ;; ANSWER SECTION: version.bind. 0 CH TXT "9.9.4-RedHat-9.9.4-51.el7" ;; AUTHORITY SECTION: version.bind. 0 CH NS version.bind. ;; Query time: 41 msec ;; SERVER: #53() ;; WHEN: Fri Dec 01 15:03:39 UTC 2017 ;; MSG SIZE rcvd: 93 ------------------------------- ------------------------------- version.bind will give you the version number.. 0 -
I don't want to find it, I want to hide it. 0 -
Edit /etc/named.conf and add version "I don't Think so"; after // query-source port 53; and restart bind 0 -
Hello, The previous post should help if you are using Bind. If you are using PowerDNS, see the following thread: Name Servers Versions Thank you. 0
Please sign in to leave a comment.
Comments
4 comments