pidgin.im Misconfigured DNS

Adrian Birsan adrian at softpill.eu
Thu Nov 7 13:13:28 EST 2013 

Hello,

I would like to report a misconfigured DNS. Please check attached file 
containing details regarding the issue.

The NS allows zone transfer to any host, as you can see i was able to 
query the NS about pidgin.im, and your NS pop up all its infos.

In order to fix this, you must change "allow zone transfer" settings 
from "any" to "0.0.0.0" to not allow any zone transfer, or to any of 
your back up NS only. So the other people won't see all the information 
about your hosts!

Looking forward reading you!

regards
Adrian
-------------- next part --------------
Misconfigured DNS
==================

DNS Servers for pidgin.im:
============================
	ns1.reaperworld.com
	imperial.pidgin.im
	rock.pidgin.im

Trying zone transfer
============================.
	Testing ns1.reaperworld.com
		Request timed out or transfer not allowed.
	Testing imperial.pidgin.im

misconfigured DNS server found:
=======================================================================
pidgin.im.	600	IN	SOA	pidgin.im. mark.kingant.net. (
					2012091101	;serial
					10800     	;refresh
					3600      	;retry
					604800    	;expire
					1800   )	;minimum
pidgin.im.	600	IN	NS	ns1.reaperworld.com.
pidgin.im.	600	IN	NS	rock.pidgin.im.
pidgin.im.	600	IN	NS	imperial.pidgin.im.
pidgin.im.	600	IN	A	209.191.187.69
pidgin.im.	600	IN	MX	10 rock.pidgin.im.
pidgin.im.	600	IN	MX	20 imperial.pidgin.im.
_xmpp-client._tcp.pidgin.im.	600	IN	SRV	5 0 5222 rock.pidgin.im.
_xmpp-server._tcp.pidgin.im.	600	IN	SRV	5 0 5269 rock.pidgin.im.
conference.pidgin.im.	600	IN	A	209.191.187.69
cpw.pidgin.im.	600	IN	MX	10 rock.pidgin.im.
cpw.pidgin.im.	600	IN	MX	20 imperial.pidgin.im.
d.pidgin.im.	600	IN	CNAME	developer.pidgin.im.
developer.pidgin.im.	600	IN	CNAME	nicobar.pidgin.im.
test.developer.pidgin.im.	600	IN	CNAME	nicobar.pidgin.im.
hg.pidgin.im.	600	IN	CNAME	rock.pidgin.im.
imperial.pidgin.im.	600	IN	A	209.191.187.66
mtn.pidgin.im.	600	IN	A	209.191.187.69
nicobar.pidgin.im.	600	IN	A	67.202.116.116
nicobar.pidgin.im.	600	IN	AAAA	2607:f128:40:2400::16
planet.pidgin.im.	600	IN	A	209.191.187.69
plugin-pack.pidgin.im.	600	IN	CNAME	guifications.org.
rock.pidgin.im.	600	IN	A	209.191.187.69
rpm.pidgin.im.	600	IN	A	209.191.187.69
soc.pidgin.im.	600	IN	MX	10 rock.pidgin.im.
soc.pidgin.im.	600	IN	MX	20 imperial.pidgin.im.
stats.pidgin.im.	600	IN	CNAME	rock.pidgin.im.
www.pidgin.im.	600	IN	A	209.191.187.69

================================================================================

More information about the security mailing list