Re: DNS and SMTP

From: Russell J. Wood (rjw_at_open-cpp.net)
Date: 05/30/04

  • Next message: Leon North: "Registry" 
    Date: Mon, 31 May 2004 01:32:58 +0800
To: security-basics@securityfocus.com

    On Fri, May 28, 2004 at 06:16:46AM -0700, kaps lock wrote:
    >Hi All,
    >I am a security new bie.I would like to know or
    >atleast if somebody can have me some pointers to good
    >turtorials on
    >
    >1)DNS
    >basically i want to be able to understand everything
    >about DNS ,using nslookup,dig inorder to be a good
    >security analyst.like how i could determine OS of a
    >dns server ,or say how i could determine what evrsion
    >of BIND it is using etc.

    The most recommended book available on this subject is DNS and BIND 4th ed. by
    Paul Albitz and Cricket Liu. Very informative.

    >2)SMTP
    >If somebody could tell me what is an Object ID and how
    >does it function and how it is decided upon!!Like the
    >tree that is followed.Also could a system be
    >compromised if a attacker nows the communitry string?

    Again, it's probably best if you purchase a book on your preferred MTA.

    Another alternative is to read the RFC's on the two topics.

    - Russell

    ---------------------------------------------------------------------------
    Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
    any course! All of our class sizes are guaranteed to be 10 students or less
    to facilitate one-on-one interaction with one of our expert instructors.
    Attend a course taught by an expert instructor with years of in-the-field
    pen testing experience in our state of the art hacking lab. Master the skills
    of an Ethical Hacker to better assess the security of your organization.
    Visit us at:
    http://www.infosecinstitute.com/courses/ethical_hacking_training.html
    ----------------------------------------------------------------------------

  • Next message: Leon North: "Registry"

    Relevant Pages

    • RE: Minimum password requirements
      ... say it risks decreasing security rather than improving it. ... > Ethical Hacking at the InfoSec Institute. ... to facilitate one-on-one interaction with one of our expert instructors. ... Attend a course taught by an expert instructor with years of in-the-field ...
      (Security-Basics)
    • RE: ISA Server Crash
      ... Asunto: RE: ISA Server Crash ... Astaro Security Linux, the comprehensive security solution that combines six ... to facilitate one-on-one interaction with one of our expert instructors. ... Attend a course taught by an expert instructor with years of in-the-field ...
      (Security-Basics)
    • Re: process identification
      ... IT Technical Security Officer ... the computer has an open port with a listening ftp-server, but there is no matching PID with netstat. ... to facilitate one-on-one interaction with one of our expert instructors. ... Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. ...
      (Security-Basics)
    • RE: Minimum password requirements
      ... I'd say it risks decreasing security rather than ... >> Ethical Hacking at the InfoSec Institute. ... to facilitate one-on-one interaction with one of our expert instructors. ... Attend a course taught by an expert instructor with years of in-the-field ...
      (Security-Basics)
    • RE: Wireless LAN Security for Warehouse
      ... Security Consultant ... Wireless LAN Security for Warehouse ... to facilitate one-on-one interaction with one of our expert instructors. ... Attend a course taught by an expert instructor with years of in-the-field ...
      (Security-Basics)