May 15, 2007
Anonymous Zone Transfers
Unkowingly allowing Anonymous Zone Transfers can increase your risk profile immensley.
How to test for anonymous zone transfer using nslookup:
gt;nslookup
gt;set query=ns
gt; acme.com
Server: acme.com
Address: 000.000.000.000
acme.com nameserver = ns1.acme.com
acme.com nameserver = ns2.acme.com
ns1.acme.com internet address = ccc.ccc.ccc.ccc
ns2.acme.com internet address = vvv.vvv.vvv.vvv
gt; server ns1.acme.com
gt; ls acme.com
[ns1.acme.com]
acme.com.
A hhh.hhh.hhh.hhh
acme1.com.NS
server = ns1.acme.com
acme2.com.NS
server = ns2.acme.com
mail1
A uuu.uuu.uuu.uuu
mail2
A ddd.ddd.ddd.ddd
www
A uuu.uuu.uuu.uuu
web2
A iii.iii.iii.iii