Avatar of Robin_Ottawa

asked on 

MS DNS Server - Remove respons to CHAOS bind.version query


I have been using domain tools provided by dnsstuff.com and upon running checks on my domain, came across this :

Nameserver software version
Issues a warning if the nameservers respond to the CHAOS bind.version query.

One or more nameservers responded to version queries. This can be considered a breach of security. If a malicious person or program had access to a version-specific exploit for your DNS server, displaying the version info openly will make their attack much easier. This should be removed or obscured. The nameservers that responded to version queries are:

xx.xx.xx.xx responded with "Microsoft DNS 6.1.7601 (1DB1446A)"
xx.xx.xx.xx responded with "Microsoft DNS 6.1.7601 (1DB1446A)"

Any thoughts on how to provent my MS DNS servers from giving this information? This warning seems to sound valid..

Avatar of undefined
Last Comment

8/22/2022 - Mon