Ben's

bind 서버 version 정보 외부에 제공하지 않게 하기 본문

리눅스/DNS

bind 서버 version 정보 외부에 제공하지 않게 하기

Ben Ko (SINCE 2013) 2013. 1. 17. 17:04
728x90

[nhko@nhkotest ~]$ dig @nhko.com txt chaos version.bind

; <<>> DiG 9.3.3rc2 <<>> @nhko.com txt chaos version.bind
; (1 server found)
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 4133
;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;version.bind.                  CH      TXT

;; ANSWER SECTION:
version.bind.           0       CH      TXT     "9.4.3-P3"

;; AUTHORITY SECTION:
version.bind.           0       CH      NS      version.bind.

;; Query time: 0 msec
;; SERVER: xxx.xxx.xxx.xxx#53(xxx.xxx.xxx.xxx)
;; WHEN: Tue Nov 17 11:04:53 2009
;; MSG SIZE  rcvd: 65

 

[/etc/named.conf]
options {
        directory "/var/named";
        allow-transfer { xxx.xxx.xxx.xxx; };
        recursive-clients 3000;
        //allow-recursion { our_trust_ip; };
        allow-recursion { any; };
        check-names master ignore;
        version "Unknown"; ===> 추가
};

 

[nhko@nhkotest ~]$ dig @nhko.com txt chaos version.bind

; <<>> DiG 9.3.3rc2 <<>> @nhko.com txt chaos version.bind
; (1 server found)
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 22431
;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;version.bind.                  CH      TXT

;; ANSWER SECTION:
version.bind.           0       CH      TXT     "Unknown"

;; AUTHORITY SECTION:
version.bind.           0       CH      NS      version.bind.

;; Query time: 0 msec
;; SERVER: xxx.xxx.xxx.xxx#53(xxx.xxx.xxx.xxx)
;; WHEN: Tue Nov 17 11:05:21 2009
;; MSG SIZE  rcvd: 64

저작자표시 비영리 변경금지

'리눅스 > DNS' 카테고리의 다른 글

리버스 DNS off  (0) 2013.04.09
'리눅스/DNS' Related Articles more