[CVALE] DNS Question
Kristian Hoffmann
khoff at fire2wire.com
Mon May 11 22:28:39 PDT 2009
Hi Terry!
On Sat, 2009-05-02 at 19:26 -0700, Terry wrote:
...
> My question is...
> Is there any DNS query (or series of queries) that would reveal the list of hosts (or subdomains) on
> a domain if zone file transfers are restricted at the DNS server?
To my knowledge, no. Short of compromising an authoritative DNS server,
there's no way to get a list of records in a given zone without the
ability to do a zone transfer (AXFR). The next best thing is a
dictionary attack against the zone, but you're much more likely to be
port scanned first. Security through obscurity...
Take care,
-Kristian
More information about the cvale
mailing list