This is a discussion on Re: dictionary attack on nameservers - DNS ; On Wed, Aug 18, 2004 at 05:09:53PM +0200, Florian Weimer wrote: > * Roy Arends: > > > Err, most of the attacks I know involves a target. If the target is the > > .de domain, the attack would ...
On Wed, Aug 18, 2004 at 05:09:53PM +0200, Florian Weimer wrote:
> * Roy Arends:
> > Err, most of the attacks I know involves a target. If the target is the
> > .de domain, the attack would benefit from the knowledge of zones under the
> > .de domain.
> How so? I need a list of the name servers for .DE, and detailed
> routing information is also desirable (including the router
> vendors/software versions that are involved).
Some real-world router/switch names:
Note that there is real information encoded in those names.
The ability to completely list of all the domain names under, for
example, Level3.net, would give a tremendous amount of information
about the structure of their network. One could gather the same
information using thousands of traceroutes, or perhaps by a very
carefully crafted dictionary attack, but the amount of work involved
would be orders of magnitude greater.
email@example.com p: +1 310 823 9358 f: +1 310 823 8649
firstname.lastname@example.org SIP: email@example.com
to unsubscribe send a message to firstname.lastname@example.org with
the word 'unsubscribe' in a single line as the message text body.