Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Nessus-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: I'll argue the wording on 18356...

from [Michel Arboi] Network Security [Permanent Link]
Subject: Re: I'll argue the wording on 18356...
Date: Thu, 31 Aug 2006 23:18:28 +0200 
On Thu Aug 31 2006 at 22:59, Jason Haar wrote:


It's just that the wording as such made me feel that if someone else was
looking at the report of our DNS servers, they'd think there was a
serious problem instead of a potential one.


Would that message be clearer?

-----------------------------------------------------------------------------
A DNS server is running on this port but it only 
answers to UDP requests.
This means that TCP requests are blocked by a firewall.

This configuration is not RFC-compliant. Contrary to 
common belief, TCP transport is not restricted to zone 
transfers (AXFR) :
- answers bigger than 512 bytes are always transmitted 
over TCP.
- for all other requests, UDP is only 'preferred' for 
performance reasons. i.e. RFC1035 (STD0013) does not forbid 
a DNS client from issuing its queries directly over TCP.

** If you are sure that your DNS server will never return 
** answers bigger than 512 bytes and that the client 
** software prefers UDP (which is nearly certain), you may 
** disregard this message.

Read RFC1035 (STD0013) for more information.

Risk factor : None
-----------------------------------------------------------------------------
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: I'll argue the wording on 18356..., Jason Haar
Next by Date:  Re: I'll argue the wording on 18356..., Jason Haar
Previous by Thread:  Re: I'll argue the wording on 18356..., Jason Haar
Next by Thread:  Re: I'll argue the wording on 18356..., Jason Haar
Indexes:  [Date] [Thread] [Top] [All Lists]