dns vulnerability

[scool]

is there any updates or pathes (plesk 8.6) for the known vulnerability that came up in dns ?

Yesterday i had my first hack on my server. Dns Vulnerability was responsible for hacking into hosted sites.

 

[MajorWinters]

Install system/os updates, plesk isn't responsible for installing those security patches.

 

[Hultenius]

Run the following command from shell: (where {SERVER_IP} = server IP)

dig +short @{SERVER_IP} porttest.dns-oarc.net TXT

You should get a response like "xxx.xxx.xxx.xxx is GREAT" (or GOOD). If you get something like FAIR or POOR, you need to update BIND ("yum update bind").

 

[gerryb]

Thanks. great advice.

Gone from poor to GREAT on my ubuntu system on installing bind9 apt-get install bind9. On that system
dig +short @{own domain name} porttest.dns-oarc.net TXT as dig did not recognise IP address.

 

[Total]

Run the following command from shell: (where {SERVER_IP} = server IP)

You should get a response like "xxx.xxx.xxx.xxx is GREAT" (or GOOD). If you get something like FAIR or POOR, you need to update BIND ("yum update bind").

I received a poor rating but I tried to update bind and get this ..

[root@xxx-xxx-xx-xxx# yum update bind
fedora 100% |=========================| 2.1 kB 00:00
primary.sqlite.bz2 100% |=========================| 3.8 MB 00:06
updates 100% |=========================| 2.3 kB 00:00
Setting up Update Process
Could not find update match for bind
No Packages marked for Update

[Ideas , thnaks ..

 

[crobinson]

Unix command line...

Type "dig +short porttest.dns-oarc.net TXT" with out the quotes...

More info https://www.dns-oarc.net/oarc/services/porttest

 

[tenoch]

Read:
http://help.godaddy.com/article.php?article_id=4690&topic_id=&isc=