Few Security Issues With Fresh Install

[txt3rob]

i ran Nessus to check over my server afther beeing hacked so i want to plug up lots of holes.

i require help with

usable remote name server

Synopsis :

The remote name server allows recursive queries to be performed
by the host running nessusd.


Description :

It is possible to query the remote name server for third party names.

If this is your internal nameserver, then forget this warning.

If you are probing a remote nameserver, then it allows anyone
to use it to resolve third parties names (such as www.nessus.org).
This allows hackers to do cache poisoning attacks against this
nameserver.

If the host allows these recursive queries via UDP,
then the host can be used to 'bounce' Denial of Service attacks
against another network or system.

i carnt remember the site that tells you if your DNS is insecure or not

 

[pkilam]

You can turn off recursive query by adding the following to the options section of /etc/named.conf

recursion no;

It is also a good idea to not to return the bind version using:

version "null";

The site you want may be:

http://member.dnsstuff.com/pages/dnsreport.php

 

[txt3rob]

tryed to add them but it kept failing to start named service :S

 

[txt3rob]

they now charge for a DNS report

 

[GXX]

Place it within the options { } portion of your named.conf.

 

[txt3rob]

cheers works wonders