RE: [Full-disclosure] Re: Reverse dns (whether you want it or not)

From: Edward Ray (support_at_mmicman.com)
Date: 03/11/05

  • Next message: class 101: "RE: [Full-disclosure] Publishing exploit code ruled illegal in France?" 
    To: <full-disclosure@lists.grok.org.uk>
Date: Fri, 11 Mar 2005 05:34:34 -0800

     I would ask your ISP to give reverse domain delagation to your DNS servers.
    This will allow your DNS servers to defeine the reverse DNS, and the root
    servers will point to them instead of your ISP's DNS.

    This is a common request and most ISPs (including mine) do this.

    Edward W. Ray
    CISSP, MCSE 2003+Security, P.E. GCIA, GCIH
    NetSec Design & Consulting

    -----Original Message-----
    From: full-disclosure-bounces@lists.grok.org.uk
    [mailto:full-disclosure-bounces@lists.grok.org.uk] On Behalf Of TheGesus
    Sent: Thursday, March 10, 2005 1:08 PM
    To: full-disclosure@lists.grok.org.uk
    Subject: [Full-disclosure] Re: Reverse dns (whether you want it or not)

    On this subject (marginally), last year we moved a rather large CIDR block
    from one ISP to another.

    The new ISP took it upon themselves to give *ALL* our unused IP addresses a
    bogus reverse lookup in the (general) format of

    10.20.30.40.abc.domain.com

    No one asked them to do this (or, at least if they did, they won't admit to
    it), and none of the reverse lookups can be looked up "forwardly".

    Is this a common practice? It doesn't seem like a good idea, but the ISP
    insisted it was a "value-added" service. In my opinion, a dead address
    should remain dead.
    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.grok.org.uk/full-disclosure-charter.html
    Hosted and sponsored by Secunia - http://www.secunia.com/

    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.grok.org.uk/full-disclosure-charter.html
    Hosted and sponsored by Secunia - http://www.secunia.com/

  • Next message: class 101: "RE: [Full-disclosure] Publishing exploit code ruled illegal in France?"

    Relevant Pages

    • RE: IE 6 will not load--"Can not findserver"
      ... The settings are set to get these addresses from the ISP. ... Domain Name Server (DNS) Address ... Use These DNS Servers ... >> operable program or batch file. ...
      (microsoft.public.windows.inetexplorer.ie6.browser)
    • Re: Reverse DNS
      ... My previous ISP only create a record in their domain as you ... more than just generic reverse DNS entries in a domain that they own. ... "HELO" or SMTP Server name in the Email configuration. ...
      (microsoft.public.windows.server.dns)
    • Re: RDNS "servfail"
      ... Ask your ISP to set up a reverse lookup for your IP address. ... What is happening with DNS queries on your firewall: your firewall log should show what has been blocked. ... If the requests were actually raching my server, ...
      (microsoft.public.windows.server.dns)
    • Re: DNS servers
      ... These are the DNS servers you get from the ISP that provides your Internet ... You don't need to buy DNS hosting for your SBS ...
      (microsoft.public.windows.server.sbs)
    • Re: Reverse DNS with MX records
      ... I have been searching for some time to find my problem with reverse DNS. ... No reverse DNS (PTR) entries. ... Is the reverse zone delegated to your DNS server from your ISP? ...
      (microsoft.public.windows.server.dns)