Hi,
bind_query.nasl checks for globally usable nameservers.
It queries kb key "Services/dns", if not set it exits.
I'm finding that sometimes only Services/udp/dns=53 is getting set after
11002 (dns_server.nasl) is run (according to the KB file), but not
Services/dns, so bind_query doesn't run its test.
I edited bind_query.nasl (see patch) and I'm now getting correct
positive results on DNS servers where I've manually confirmed with dig
that they are global resolvers.
Regards,
--
Hubert Seiwert
Internet Security Specialist, Westpoint Ltd
Albion Wharf, 19 Albion Street, Manchester M1 5LN, United Kingdom
Web: www.westpoint.ltd.uk
Tel: +44-161-2371028
bind_query.nasl checks for globally usable nameservers.
It queries kb key "Services/dns", if not set it exits.
I'm finding that sometimes only Services/udp/dns=53 is getting set after
11002 (dns_server.nasl) is run (according to the KB file), but not
Services/dns, so bind_query doesn't run its test.
I edited bind_query.nasl (see patch) and I'm now getting correct
positive results on DNS servers where I've manually confirmed with dig
that they are global resolvers.
Regards,
--
Hubert Seiwert
Internet Security Specialist, Westpoint Ltd
Albion Wharf, 19 Albion Street, Manchester M1 5LN, United Kingdom
Web: www.westpoint.ltd.uk
Tel: +44-161-2371028
Attached Files:
-
bind_query.patch (0.41 KB)