12/14/2008
Dexia.be dns problems found ?
We haven't been scanning or penetrationtesting the infrastructure, we have only used some online services to have a view on some problems that may exist - if the information in these services is correct. We didn't use any software on our pc to do that.
Reverse lookup does not match nameserver's hostname
http://dynamicnetworkservices.com/report/?domain=dexia.be
result : good for phishers because it creates confusing
Recursive-Queries:
ns1.dexia.com. NO - recursive queries denied!
ns11.dexia.com. YES - recursive queries allowed!
http://serversniff.net/nsreport.php
result ; we didn't see this with all the tests on different sites and we see in the graph of the infrastructure that there are two big nameservers that play probably a loadbalancing role so maybe this only happens with that server and maybe only with some tests, but it shouldn't in anycase. You are a bank and you are responsable and as the 10 cracked accounts have shown, you shouldn't take any risk.
Domain dexia.be has only one mail-server (comment : I hope that you in reality have some backup standby which means you can't contact the securitypeople at the bank by mail)
22:03 | Permalink | Comments (0) | Email this
| 
| 
del.icio.us
|
| 
Digg | 
Facebook
Post a comment