Hiding the version number
Thomas Renzy
thomas.renzy at veritas.com
Thu Nov 21 23:24:14 UTC 2002
dig @<servername> chaos txt version.bind
Thanks,
Thomas Renzy
IS&T Global Network Services
VERITAS Software
Office: +650-527-4734
Mobile: +650-996-7048
Fax: +650-527-2034
"Some people drink from the fountain of knowledge, others just gargle." -
Author Robert Anthony
-----Original Message-----
From: Jon Fullmer [mailto:jon at jonfullmer.com]
Sent: Thursday, November 21, 2002 2:14 PM
To: comp-protocols-dns-bind at isc.org
Subject: Hiding the version number
Our security scanner mentioned that they can determine the version number of
BIND that we're running, and that while this isn't a major security hazard,
it's best to be disabled. I THINK I've figured out that I can control the
display of the BIND version information using the "version" command in the
"options" section.
What I want to know is, how can I test this? I've been looking for some way
to issue a dig command that would tell me my server's version of BIND, but I
can't find it. How is this done?
- Jon
More information about the bind-users
mailing list