Difference between revisions of "Bind"
From wiki
(Created page with "== Install == <syntaxhighlight lang="console"> # apt install bind9 </syntaxhighlight> == Configure == {{WIP}} Category:Linux Server") |
(Hide version) |
||
| Line 1: | Line 1: | ||
| + | {{DISPLAYTITLE:Install Bind as an authoritative DNS server}} | ||
| + | |||
== Install == | == Install == | ||
<syntaxhighlight lang="console"> | <syntaxhighlight lang="console"> | ||
| Line 6: | Line 8: | ||
== Configure == | == Configure == | ||
{{WIP}} | {{WIP}} | ||
| + | |||
| + | === Hide version === | ||
| + | Version might be useful to an attacker that is searching known vulnerabilities on your server. Let’s make its life more difficult by hiding it. | ||
| + | |||
| + | Note that it is not an excuse to run old vulnerable software. The goal is just to slow down attacker in case of newly published security exploit, so you have enough time to update before getting pwned. | ||
| + | |||
| + | To prevent the version being returned edit file <code>/etc/bind/named.conf.options</code> and add the version line<syntaxhighlight lang="apache"> | ||
| + | options { | ||
| + | |||
| + | version ""; | ||
| + | |||
| + | } | ||
| + | </syntaxhighlight> | ||
[[Category:Linux Server]] | [[Category:Linux Server]] | ||
Revision as of 06:46, 12 August 2016
Install
# apt install bind9
Configure
 Warning: | This page is a work in progress and is not completed. Important informations might be missing or wrong. |
Hide version
Version might be useful to an attacker that is searching known vulnerabilities on your server. Let’s make its life more difficult by hiding it.
Note that it is not an excuse to run old vulnerable software. The goal is just to slow down attacker in case of newly published security exploit, so you have enough time to update before getting pwned.
To prevent the version being returned edit file /etc/bind/named.conf.options and add the version line
options {
version "";
}
