how to mask your bind version

0

I was checking the DNS record for a domain (using dnsstuff.com) and I noticed that the Bind version was being disclosed to the public:

Your nameservers have the following versions:
65.49.*.*: “9.2.4″
65.49.*.*: “9.2.4

Any good sys admin will tell you that a simple way to steer script kiddies, is not to disclose the server software version you run. To do this, you just have to modify the configuration files. In my case, I’m running Bind (no need to mention the version…), so I modified /etc/named.conf and added the following line:

version “surely you must be joking”;

Restart the named service and now the record is displayed like so:

Your nameservers have the following versions:
65.49.*.*: “surely you must be joking”
65.49.*.*: “surely you must be joking”

Of course, you can modify the record to say anything but I want to keep it professional…

Leave a Reply