savannah-hackers
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Fwd: Improperly configured DNS servers for gnu.org and fsf.org

From: Paul Eggert
Subject: Fwd: Improperly configured DNS servers for gnu.org and fsf.org
Date: Mon, 5 Apr 2021 09:50:20 -0700
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Thunderbird/78.7.1
Who's in charge of the DNS servers for gnu.org and fsf.org? I'd like to forward the attached message to them. Thanks.
--- Begin Message --- Subject: Improperly configured DNS servers for gnu.org and fsf.org Date: Mon, 5 Apr 2021 08:00:00 -0400 
Hi there,

My name is Bill Demirkapi and I am an independent security researcher. I
was bored last night so for funsies I decided to test the nameservers of
the top 500k Alexa domains. I tried querying each domain's nameservers with
AXFR <https://tools.ietf.org/html/rfc5936> queries when I was shocked to
see "gnu.org" as a vulnerable domain.

It seems like a partial misconfiguration because your primary nameserver
ns1.gnu.org refuses AXFR queries but all the other ones (ns2, ns3 (same as
ns2), and ns4) were more than happy to send over the zone for "gnu.org".
Also, I checked "fsf.org" and unfortunately all of its nameservers were
vulnerable to AXFR queries too.

I would recommend reviewing the configuration for all of your DNS servers
to check for any other potential mistakes as well. Attached is what I was
able to extract. Let me know if I can help!

Best regards,
Bill Demirkapi
Independent Security Researcher
https://billdemirkapi.me

Attachment: gnu.org.zone.txt
Description: Text document

Attachment: fsf.org.zone.txt
Description: Text document


--- End Message ---
reply via email to
[Prev in Thread] Current Thread [Next in Thread]