Is it possible to get all DNS records off a remote server?
From serverfault
Choor
-
Normally you can't, but if the DNS server allows zone tranfers to anyone (unlikely) you can do it.
John Gardeniers : +1 That's the definitive answer. Without a zone transfer you cannot even know if you have obtained all the records for a given zone.From Charlie Somerville -
Try Zonetransfer on unix shell:
$ dig axfr sld.tld. @nameserverget a list of nameservers delegated for your zone:
$ dig soa sld.tld. +traceFrom ZaphodB -
Zone transfers are always available to slave nameservers. This will be at all the listed nameservers except the master nameserver. Higher security configuration hide the master nameserver and may not allow public access to it.\
Once upon a time zone transfers were frequently available to everyone. Today's best practices discourage allowing them to everyone. This helps limit information leakage. The above axfr command will get the data if it is available.
From BillThor
0 comments:
Post a Comment