Re: Fingerprinting DNS implementations.

[Roy Arends <roy@logmess.com>]

On Tue, 9 Dec 2003, Dean Anderson wrote:

> I'm wondering why you are doing this.

I want to know how the DNS landscape looks like. A popularity contest.
Especially if the wg decides to clarify parts of the standards, or
standardise additions, I'd like to know the impact on the landscape,
therefor I need to know what it looks like.

Oh, and for fun as well.

> This sort of tool could be abused by crackers.

The tool does not discriminate on intend or mindset.

> I am particularly where is sounds like your are looking for fingerprints
> for vendors that have obscured their responses in order to prevent
> fingerprinting.

The tool does not discriminate in that area neither. Both implementations
that scream their version, including authors, and implementations
that do not can be identified.

Vendors do not obscure responses. How do you obscure responses ? Create
but not send ? Response-Sensorship ?

Instead of 'fingerprinting', would you like me to call it 'protocol
conformity, indexed by implementation' ?

Roy

--
to unsubscribe send a message to namedroppers-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://ops.ietf.org/lists/namedroppers/>