Hiding bind / named DNS version

Short blog post, nothing too fancy here!

Over the past few months, to appease DNS testers (DNSStuff, among others) in obscuring version data to the world wide web, it always said to remove the version data from being shown.

Fast forward to tonight I went ahead and did just that. For BIND / Named, it’s fairly straight forward. Granted, I wish there was a better method to doing this (as in actually not responding to version requests!)

The following is the little configuration line that fits into the options {} block. This will be where-ever you have named.conf (or one of its many config file locations) stashed at…

version "";

Yeah, that’s it. Just that.

Save the named.conf file or named.conf.options file, restart bind, done.

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments