HIDS 12145

From Atomicorp Wiki
Revision as of 10:43, 18 January 2012 by Mshinn (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

Log example:

server named[5141]: client 1.2.3.4#64003: zone transfer `somedomain.com/AXFR/IN` denied

Explanation:

This log entry shows that the DNS server is denying a system from performing a zone transfer. A zone transfer is a request to access all DNS data for a domain. This is normal for a trusted DNS server to do that is authoritative for the domain, but not normal or required for any other server.

Attackers may use this method to perform reconnaissance on servers before an attack.

Personal tools