Re: get a domain's dns records
On Fri, Jan 21, 2011 at 12:50:18PM -0500, Barry Margolin wrote: In article mailman.1418.1295618808.555.bind-us...@lists.isc.org, Dave Knight d...@knig.ht wrote: I guess the tool just always assumes that there's probably a www worthy asking about That's what I assumed at first, too. But the report for his domain also included NS records for the subdomain test.nsbeta.info. Do you think it also has test.domain in its default set of names to look up? It has already been established by Phil Mayers that this is exactly what it does. -- /*\ ** ** Joe Yao j...@tux.org - Joseph S. D. Yao ** \*/ ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: get a domain's dns records
On Fri, Jan 21, 2011 at 02:19:45PM +0800, p...@mail.nsbeta.info wrote: I'm jsut curious, how does who.is know the dns records in my domain (nsbeta.info)? The page shows some of my RRs exactly: http://who.is/dns/nsbeta.info/ The title of the page is, Nsbeta.info DNS Lookup | Nameserver Lookup - Who.is - Who.is. They probably did just exactly that - DNS lookup. Anything in DNS is public information. -- /*\ ** ** Joe Yao j...@tux.org - Joseph S. D. Yao ** \*/ ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: get a domain's dns records
In article mailman.1415.1295616325.555.bind-us...@lists.isc.org, Joseph S D Yao j...@tux.org wrote: On Fri, Jan 21, 2011 at 02:19:45PM +0800, p...@mail.nsbeta.info wrote: I'm jsut curious, how does who.is know the dns records in my domain (nsbeta.info)? The page shows some of my RRs exactly: http://who.is/dns/nsbeta.info/ The title of the page is, Nsbeta.info DNS Lookup | Nameserver Lookup - Who.is - Who.is. They probably did just exactly that - DNS lookup. Anything in DNS is public information. But the nameservers for the domain don't allow public zone transfers. So if you know the names in the zone you can look them up, but how did the site list the names in his zone? -- Barry Margolin, bar...@alum.mit.edu Arlington, MA *** PLEASE don't copy me on replies, I'll read them in the group *** ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: get a domain's dns records
On 2011-01-21, at 8:50 AM, Barry Margolin wrote: In article mailman.1415.1295616325.555.bind-us...@lists.isc.org, Joseph S D Yao j...@tux.org wrote: On Fri, Jan 21, 2011 at 02:19:45PM +0800, p...@mail.nsbeta.info wrote: I'm jsut curious, how does who.is know the dns records in my domain (nsbeta.info)? The page shows some of my RRs exactly: http://who.is/dns/nsbeta.info/ The title of the page is, Nsbeta.info DNS Lookup | Nameserver Lookup - Who.is - Who.is. They probably did just exactly that - DNS lookup. Anything in DNS is public information. But the nameservers for the domain don't allow public zone transfers. So if you know the names in the zone you can look them up, but how did the site list the names in his zone? I just tried this with one of mine sanxion.org It returned sanxion.org MX 5 minutes 100 sb.sanxion.org sanxion.org NS 5 minutes ns-ext.isc.org sanxion.org NS 5 minutes borg.c-l-i.net sanxion.org NS 5 minutes ns.c-l-i.net sanxion.org SOA 5 minutes borg.c-l-i.net. dave.sanxion.org. 2011010900 3600 1800 604800 3600 The above might have been gotten either with separate queries for sanxion.org./in/mx sanxion.org./in/ns sanxion.org./in/soa or a single sanxion.org./in/any sb.sanxion.orgA 5 minutes 216.235.14.46 (Gatineau, QC, CA) sb.sanxion.org5 minutes 2001:4900:1:393:211:d8ff:fe9b:6b7c these are returned in the additional section when doing the mx, or any query above www.sanxion.org A 5 minutes 85.17.60.159 (Amsterdam, 07, NL) I guess the tool just always assumes that there's probably a www worthy asking about dave ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: get a domain's dns records
On 21/01/11 13:50, Barry Margolin wrote: In articlemailman.1415.1295616325.555.bind-us...@lists.isc.org, Joseph S D Yaoj...@tux.org wrote: On Fri, Jan 21, 2011 at 02:19:45PM +0800, p...@mail.nsbeta.info wrote: I'm jsut curious, how does who.is know the dns records in my domain (nsbeta.info)? The page shows some of my RRs exactly: http://who.is/dns/nsbeta.info/ The title of the page is, Nsbeta.info DNS Lookup | Nameserver Lookup - Who.is - Who.is. They probably did just exactly that - DNS lookup. Anything in DNS is public information. But the nameservers for the domain don't allow public zone transfers. So if you know the names in the zone you can look them up, but how did the site list the names in his zone? Most of the records are well-known (i.e. A/MX/NS/SOA on the zone apex, or www.zone.name) or lookups of the RHS of a well-known. The site appears to probe for test.zone.name. So it didn't list the zone. It looked up some well-known names and RRs and got replies. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: get a domain's dns records
Dave Knight writes: I guess the tool just always assumes that there's probably a www worthy asking about But how does the site know I have a sub domain test.nsbeta.info and its name servers? I didn't think that I have got this sub domain be public. Regards. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: get a domain's dns records
Dnia 2011-01-21 08:50 Barry Margolin napisał(a): In article mailman.1415.1295616325.555.bind-us...@lists.isc.org, Joseph S D Yao j...@tux.org wrote: On Fri, Jan 21, 2011 at 02:19:45PM +0800, p...@mail.nsbeta.info wrote: I'm jsut curious, how does who.is know the dns records in my domain (nsbeta.info)? The page shows some of my RRs exactly: http://who.is/dns/nsbeta.info/ The title of the page is, Nsbeta.info DNS Lookup | Nameserver Lookup - Who.is - Who.is. They probably did just exactly that - DNS lookup. Anything in DNS is public information. But the nameservers for the domain don't allow public zone transfers. So if you know the names in the zone you can look them up, but how did the site list the names in his zone? My guess would be that they don't list the whole zone. Look what's there: nsbeta.info (dig any nsbeta.info) and some quite easy to guess prefixes: mail, test and www. And everything deduced from them, like names test.nsbeta.info and mail.nsbeta.info resolve to. Probably all questions asked with ANY recordtype I've tested on two other domains, and it looks like that - results show that common prefixes also include blog. And they have some filtering of results, as I have a * TXT record which didn't show up as blog entry. Actually dig any on my zone gives even more information - e.g. SPF record , which didn't show up on results. And they don't support third-level domains as well - asking form mail.nsbeta.info returns information about nsbeta.info Torinthiel ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
RE: get a domain's dns records
It seems to do a regular lookup, plus maybe an ANY But I've also noticed that it seems to find test.domain.com. I often put a 'test.whatever.com. IN A 127.0.0.1' into zones and a couple I checked it found them, even though it shouldn't have by normal means it also found a 'blog' record I had on one of my domains ... so, it must be looking for some specific records in addition to general lookups. t. -Original Message- From: bind-users-bounces+tsnyder=rim@lists.isc.org [mailto:bind-users-bounces+tsnyder=rim@lists.isc.org] On Behalf Of p...@mail.nsbeta.info Sent: Friday, January 21, 2011 1:20 AM To: bind-users Subject: get a domain's dns records I'm jsut curious, how does who.is know the dns records in my domain (nsbeta.info)? The page shows some of my RRs exactly: http://who.is/dns/nsbeta.info/ Regards. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users - This transmission (including any attachments) may contain confidential information, privileged material (including material protected by the solicitor-client or other applicable privileges), or constitute non-public information. Any use of this information by anyone other than the intended recipient is prohibited. If you have received this transmission in error, please immediately reply to the sender and delete this information from your system. Use, dissemination, distribution, or reproduction of this transmission by unintended recipients is not authorized and may be unlawful. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
RE: get a domain's dns records
It checks for test.domain - I saw it do that for my zone. For us it isn't a subdomain but simply an A record. Apparently when it found your record it went ahead and did another check for your sub-zone. I'm surprised that it does not check for ftp.zone. Whenever we're doing acquisitions here that is one of the zones I find at most sites (though often enough it uses the same IP as the www.zone. -Original Message- From: bind-users-bounces+jlightner=water@lists.isc.org [mailto:bind-users-bounces+jlightner=water@lists.isc.org] On Behalf Of p...@mail.nsbeta.info Sent: Friday, January 21, 2011 9:21 AM To: Dave Knight Cc: comp-protocols-dns-b...@isc.org; Barry Margolin Subject: Re: get a domain's dns records Dave Knight writes: I guess the tool just always assumes that there's probably a www worthy asking about But how does the site know I have a sub domain test.nsbeta.info and its name servers? I didn't think that I have got this sub domain be public. Regards. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users Proud partner. Susan G. Komen for the Cure. Please consider our environment before printing this e-mail or attachments. -- CONFIDENTIALITY NOTICE: This e-mail may contain privileged or confidential information and is for the sole use of the intended recipient(s). If you are not the intended recipient, any disclosure, copying, distribution, or use of the contents of this information is prohibited and may be unlawful. If you have received this electronic transmission in error, please reply immediately to the sender that you have received the message in error, and delete it. Thank you. -- ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: get a domain's dns records
On 21/01/11 14:21, p...@mail.nsbeta.info wrote: Dave Knight writes: I guess the tool just always assumes that there's probably a www worthy asking about But how does the site know I have a sub domain test.nsbeta.info and its name servers? I didn't think that I have got this sub domain be public. It guessed. See my other email. It tries a number of other names too (blog, forum, help, mail) ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
get a domain's dns records
I'm jsut curious, how does who.is know the dns records in my domain (nsbeta.info)? The page shows some of my RRs exactly: http://who.is/dns/nsbeta.info/ Regards. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users