February 12, 2008 Leave a comment
In an attempt to determint the bind version number remotely, usually something like:
dig @dnsserver.net version.bind txt ch
will give you what you need. However, this is a configuration option that can be turned off. ie, in named.conf they could have set the following
version “back off!”;
and, uhh, yeah. that will return “back off!” for our version number, which isn’t very helpful.
From the man page:
fpdns is a program that remotely determines DNS server versions. It does this by sending
a series of borderline DNS queries which are compared against a table of responses and
False positives or incorrect versions may be reported when trying to identify a set of
servers residing behind a load-balancing apparatus where the servers are of different
implementations, when a specific implementation behaves like a forwarder, behind a fireâ€
wall without statefull inspection or without Application Intelligence.
and it works pretty well from my preliminary tests.