Like this CertiGuide? Get it in PDF format!
Click Here!
Use coupon code "certiguide" to save 20%!
(Expires 2004/12/31)

Also available: 300-question Security+ practice test!
Get It Here!

Custom Search







Table Of Contents  CertiGuide to Security+
 9  Chapter 3:  Infrastructure Security (Domain 3.0; 20%)
      9  3.5  Security Baselines
           9  3.5.3  Application Hardening

Previous Topic/Section
3.5.3.4  FTP Servers
Previous Page
Pages in Current Topic/Section
1
2
Next Page
3.5.3.6  NNTP Servers
Next Topic/Section

3.5.3.5  DNS Servers
(Page 1 of 2)

DNS, or the Domain Name Service, is used to map hostnames to IP addresses. In the UNIX world, the most common DNS server is BIND – and unpatched BIND servers were recently named by SANS as the #1 security problem on the Internet.

Many sites configure their web server and FTP server on the same system (at least in part because certain vendors’ software, like IIS, encourages this by including an FTP server as part of the web server). If you really want to run both on the same machine, make sure that your FTP server can’t be used to upload files into a directory also accessible via your web server – if an attacker can upload a file to a location accessible by the web server, he can upload a malicious script using FTP and then execute it by invoking it via a web browser.

DNS uses TCP port 53 and UDP port 53, so if you are passing DNS information through a firewall, you need to make sure those ports are open.

DNS

DNS, the Domain Name Service, maps hostnames to IP addresses.

DNS uses TCP port 53 and UDP port 53.



Previous Topic/Section
3.5.3.4  FTP Servers
Previous Page
Pages in Current Topic/Section
1
2
Next Page
3.5.3.6  NNTP Servers
Next Topic/Section

If you find CertiGuide.com useful, please consider making a small Paypal donation to help the site, using one of the buttons below. You can also donate a custom amount using the far right button (not less than $1 please, or PayPal gets most/all of your money!) In lieu of a larger donation, you may wish to consider buying an inexpensive PDF equivalent of the CertiGuide to Security+ from StudyExam4Less.com. (Use coupon code "certiguide" by December 31, 2004 to save 20%!) Thanks for your support!
Donate $2
Donate $5
Donate $10
Donate $20
Donate $30
Donate: $



Home - Table Of Contents - Contact Us

CertiGuide for Security+ (http://www.CertiGuide.com/secplus/) on CertiGuide.com
Version 1.0 - Version Date: November 15, 2004

Adapted with permission from a work created by Tcat Houser et al.
CertiGuide.com Version Copyright 2004 Charles M. Kozierok. All Rights Reserved.
Not responsible for any loss resulting from the use of this site.