LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
Reload this Page security on DNS server,
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 08-13-2005, 01:30 AM   #1
silvercloud
Member
 
Registered: Aug 2005
Posts: 30

Rep: Reputation: 15
security on DNS server,

hi all,
i want to check the security of DNS server on our LAN which is connected to internet ,but i have no knowlege about this issue,whould some one explain what are the common attacks on DNS servers and what are the preventation actions against them ?
i have seen some information about creating chroot jail for increasing the security .
 
Old 08-13-2005, 01:52 AM   #2
btmiller
Senior Member
 
Registered: May 2004
Location: In the DC 'burbs
Distribution: Arch, Scientific Linux, Debian, Ubuntu
Posts: 4,290

Rep: Reputation: 378Reputation: 378Reputation: 378Reputation: 378
This is a huge topic. But basically, make sure that you're running an up to date version of BIND with all security fices enabled. Also make sure that only DNS slaves are allowed to do zone transfers (if it's a master server for any zones). Consider setting up RNDC (I think's that's the name...) for secure zone transfers and to prevent malicious people from trying to spoof your slave. DNS security is a huge field, encompassing stuff like this plus cache poisioning etc. Chrooting only helps a bit by limiting damage to the DNS server if there is a break in, but there's lots more that can go on. I would suggest doing a Web search on the topic for more details.

Of course, you need to follow general best practices for host security too (i.e. if root's password is toor, then you have a problem).
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
help needed to setup a DNS server can anyone say how to configure a DNS server subha Linux - Networking 4 04-27-2012 11:50 PM
Do I leave primary and seconday DNS blank for a DNS Server? imsam Linux - Networking 3 10-25-2004 01:48 PM
DNS security / primary names server down after large number of requests rioguia Linux - Security 4 10-08-2004 10:00 AM
DNS security / primary names server down after large number of requests rioguia Linux - Networking 1 10-07-2004 11:27 AM
need help to set up caching only dns server to with bogus DNS entries ullas Linux - Networking 1 10-28-2003 01:54 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 02:14 AM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration