...

binfo.c = Bind Version Checker 'binfo' is a quick little script to pull back the version of named running on a remote nameserver. This is handy for comparing it to a list of known vulnerable versions of named/bind. Previous to this, it took a few commands to extract out the version.

It seems to have been written more of not as a DNS admin convenience, but more as for inclusion into rootkit type packages, IMO.

perhaps, but it's certainly (a) not malicious or (b) gonna swamp the root servers.

A few commands? More like one :)

$ nslookup -q=txt -class=chaos version.bind <nameserver>

or dig version.bind chaos txt @nameserver :)

And here's how to disable giving out that information to untrusted hosts or networks:

in named.conf, set up something like this (*NOT* in the options section): ... Now, create a file called 'chaos' (in same directory where your zone files lives) with something like: ...

been there, done that. and it's interesting to see all the people who are checking out your name server after their addresses get logged for hitting the acl. -- |-----< "CODE WARRIOR" >-----| codewarrior@daemon.org * "ah! i see you have the internet twofsonet@graffiti.com (Andrew Brown) that goes *ping*!" andrew@crossbar.com * "information is power -- share the wealth."