DNS Expert

Re: DNS Expert

From:

Date:

Time:

Men & Mice Support said:

>At 9:56 AM -0500 2/17/2000, Allan Reichert wrote:
>>On Thursday, February 17, 2000, Mark@pageworks.co.uk wrote:
>> >I friend of mine was ribbing me as usual about how wonderful
>> >Windows is and how sad the Mac is and all the great tools he's
>> >got on Windows.
>> >
>> >So while he sat next to me I ran DNS Expert on his domain, and
>> >all the errors it uncovered soon shut him up!
>> >
>> >We then ran it on microsoft.com, I expected it to be near
>> >perfect. But it was far from it, with DNS Expert reporting dns
>> >servers being vunerable to spoofing and mail servers being
>> >vunerable to mail relaying.
>>
>>Here, Here!!! �I have done the same kind of thing here in the US
>>with MediaOne, a very large national cable/Internet Service
>>Provider. �They accused us (a fully-networked school system running
>>ALL services on Macs) of having problems related to e-mail. �I
>>tested their DNS system with DNS Expert and uncovered 23 printed
>>pages of errors, including MX and DNS records pointing to devices
>>that were not providing these services.
>>
>>Armed with this info, I was able to force them to correct most of
>>the problems. �While I was at it, I enquired what platform they
>>administrated from. � Since they indicated Windows, I turned them on
>>the Windows version of DNS Expert, so that they could check and
>>maintain things themselves.
>>
>>Excellent work, Men&Mice!!!
>
>Thanks for your comments, both of you.
>
>BTW: Microsoft contacted us about DNS Expert, specifically about why
>it says their server is spoofable, given that they claim to have
>fixed that in SP4. We explained that DNS Expert actually performs a
>spoofing attack to get its results. They did some testing of their
>own, and determined that, while they had in fact created a fix for
>the problem, the fix was turned off by default.
>
>There's now a page in their knowledge base database explaining how to
>enable this fix.

Interesting Chris.. The only other thing that concerns me is that they
have 5 mail servers, all of which show up as having open Relays? I was
under the impression that this was a big NO, NO.

I happened to be watching the political twits in a congress sub
committee, recently setup by the grand pobah of distaste, talk about what
they (the morons in the US gov) are going to do to overt disaster, of the
"ticking time bomb" as they call it, which is "Internet Security".

The fact of the matter is, it would appear that most of the giants, ie.,
MS, eBay, Yahoo, etc., all have several flaws and security holes that a
lot of us little guys have taken efforts to prevent and close. It is sad
when a company with a over bloated stock price like Yahoo, has to call
the FBI to fix problems, which most likely could have been fixed
internally. There is still a lot of speculation as to whether there was
really an attack. I am quite doubtful that there ever was.

I am going off topic here, and I digress, but wouldn't it be wise of MS
to close those relays? It is irresponsible companies and admins like
that, that allow spam to flow.

jer

"On a day no different than the one now dawning, Leonardo drew the first
strokes of the Mona Lisa, Shakespeare wrote the first words of Hamlet, and
Beethoven began work on his Ninth Symphony." And Windows98 Crashed!

Hey, I bought my Apple Stock @ $18, WHO'S LAUGHING NOW!!!

Sales:
888/4-DPOINT

Support:
858/452-3696