Search Again: Re: BIND or QDNS exploit?? From: QuickDNS@clube.interlink.com.br Date: Tuesday, May 2, 2000 Time: 4:45:29 am > Without testing the exploit, I'd guess it involves one of the security holes > fixed in the latest version of BIND. None of these security holes are > present in QuickDNS Pro. What's the latest BIND version and wich I have these holes? He said me that was able to change Secondary DNS data and then to change Primary DNS updating its by the modified Secondary DNS. Something like this... what about? > The only way to find the version of a DNS server through DNS protocols is > to use a version query (a specific query of class CH). Is there any way to do this in a Mac? What software I need? > Since QuickDNS Pro doesn't support this record class, it passes it on to a > root server , some of which will answer with a version string. So > this is probably why the program reported that one of your servers is > vulnerable. EMBRATEL maybe?? The brazilian BackBone... > There is absolutely no way known to us to remotely change data on a QuickDNS > Pro server, aside from AppleShare, Timbuktu, or other direct access to the > filesystem. And QDNS 3.0 with the RemoteAccess? We know that WebStar and EIMS Remote Admin are "secure"... do you will use the same idea? > I would like to test this exploit, just to be absolutely sure. Is there a > URL? I will try to get and then I then send you... there's no URL where to d/l this exploit. It's a private exploit. > ____________________________________________________________________ > Chris Buxton cbuxton@menandmice.com Alberto V. M.

Messages In This Thread: BIND or QDNS exploit?? by Listas Interlink on Apr 30, 2000 at 6:37:47 pm Re: BIND or QDNS exploit?? by Men & Mice Support on May 1, 2000 at 1:19:10 am Re: BIND or QDNS exploit?? by QuickDNS@clube.interlink.com.br on May 2, 2000 at 4:45:29 am Re: BIND or QDNS exploit?? by Men & Mice Support on May 2, 2000 at 5:42:06 am