[dns-operations] Querying version.bind illegal?

Jared Mauch jared at puck.nether.net
Thu May 23 13:55:55 UTC 2013


On May 23, 2013, at 9:39 AM, Vitalie Cherpec <vitalie at penguin.ro> wrote:

> Hi,
> 
> I've developed a DNS checking tool (http://www.dnsinspect.com/). 
> After 5 years of running it without any issues, I've received today a
> compliant through my ISP from a big company in a foreign country.
> 
> They pretend that my VPS is attacking their infrastructure while
> querying their DNS server's version and this request can be regarded
> as cyber-terror attack (my tool tries only to warn users exposing the
> DNS software version).
> 
> I've blacklisted their DNS servers from being queried in the future,
> but I would like to know if querying version.bind is illegal (in
> some countries)?

I wouldn't spend a lot of time worrying about this.

I got some very interesting and abusive emails as part of the openresolverproject.

Most of the people were professional in their requests and we have a dialogue ongoing.  Some I wouldn't even share in impolite company.

Right now there is only one IP that the OpenResolverProject does not probe.  When we share the extent of the problem, most people notice there is a problem and the request falls off their primary concern space.

- Jared


More information about the dns-operations mailing list