NS record question

[Brad Knowles]

At 6:35 PM -0500 3/28/01, Kevin Darcy wrote:

>  Such a utility could be used for nefarious purposes, of course. But
>  then, folks shouldn't be hiding behind fudged "version" strings anyway.
>  That just gives a false sense of security.

	I'm quite certain that tools to do this kind of fingerprinting 
already exist.

	The difference is that they are not widely distributed within the 
"white hat" community, and therefore I believe that many people have 
a false sense of security with regards to whether or not the specific 
version they are using can be detected.


	The sooner tools like this get more widely distributed within the 
"white hat" community, the better.

-- 
Brad Knowles, <brad.knowles at skynet.be>

/*        efdtt.c  Author:  Charles M. Hannum <root at ihack.net>          */
/*       Represented as 1045 digit prime number by Phil Carmody         */
/*     Prime as DNS cname chain by Roy Arends and Walter Belgers        */
/*                                                                      */
/*     Usage is:  cat title-key scrambled.vob | efdtt >clear.vob        */
/*   where title-key = "153 2 8 105 225" or other similar 5-byte key    */

dig decss.friet.org|perl -ne'if(/^x/){s/[x.]//g;print pack(H124,$_)}'