void_ppc |
phoenix a écrit :
Attention : les DNS utilise UDP, pas TCP !
Ton nmap -sS (Syn scan) envoie des paquets TCP....
essaie un nmap -sU 127.0.0.1 pour voir mais surtout utilise "netstat -lpun |grep :53" histoire de voire quel programme utilise ton port 53.
|
théoriquement ils devraient aussi utiliser TCP pour les requêtes, et d'ailleurs TCP est utilisé pour les transferts de zone :
RFC 1123, "Requirements for Internet Hosts -
Application and Support":
Citation :
DNS resolvers and recursive servers MUST support UDP, and
SHOULD support TCP, for sending (non-zone-transfer) queries.
Specifically, a DNS resolver or server that is sending a
non-zone-transfer query MUST send a UDP query first. If the
Answer section of the response is truncated and if the
requester supports TCP, it SHOULD try the query again using
TCP.
DNS servers MUST be able to service UDP queries and SHOULD
be able to service TCP queries. A name server MAY limit the
resources it devotes to TCP queries, but it SHOULD NOT
refuse to service a TCP query just because it would have
succeeded with UDP
|
|