Đang chuẩn bị liên kết để tải về tài liệu:
HackNotes Windows Security Portable Reference phần 3

Ở đây chúng ta thấy các máy chủ tên (hư cấu) ns1.targetdom.com (hư cấu) miền hacknotes.com nghiêm túc việc cung cấp tất cả các thông tin địa chỉ đã có sẵn. Đây không phải là to lớn tìm thấy, nhưng nó không cho chúng tôi biết địa chỉ IP cho các http://www.hacknotes.com máy chủ web, cũng như trao đổi mail (MX) mail.hacknotes.com. | 6 Part I Hacking Fundamentals Here we see the fictitious nameserver ns1.targetdom.com for fictitious domain hacknotes.com dutifully delivering all the address information it has available. This isn t a tremendous find but it does tell us the IP address for the web server http www.hacknotes.com as well as the mail exchanger MX mail.hacknotes.com. We can also tell that the mail server and the web server are on two separate networks. Zone transfer attempts will succeed only against a name server that is considered to be authoritative for the domain that you want to list. We don t need another tool to find the authoritative server nslookup continues to be our one-stop shop set type any hacknotes.com Server testlab.a p.com Address 192.168.32.1 Non-authoritative answer hacknotes.com MX preference 30 mail exchanger mail.hacknotes.com hacknotes.com primary name server ns1.targetdom.com responsible mail addr admin.ns1.targetdom.com serial 2003032521 refresh 10800 3 hours retry 3600 1 hour expire 604800 7 days default TTL 300 5 mins hacknotes.com Internet address 10.19.89.130 hacknotes.com nameserver ns1.targetdom.com hacknotes.com nameserver ns1.targetdom.com mail.hacknotes.com Internet address 192.168.169.99 If you re more comfortable with GUI-based tools Sam Spade for Windows http www.samspade.org ssw is a powerful footprinting tool with an emphasis on spam tracing. Zone transfers are disabled by default but can be activated by toggling an option under Edit I Options I Advanced. Once enabled zone transfers are simply a matter of supplying the domain name and the authoritative server as shown in Figure 1-1. Sam Spade also has a dig function that will return the authoritative nameserver for whatever domain name you specify one-click footprinting. Restrict Zone Transfers The simplest way to prevent attackers from obtaining zone transfer data from your servers is to block TCP 53 at your firewall or border router. Normal DNS lookups are conducted over UDP so it is not .