34
Chapter 3
kali >
dig hackers-arise.com ns
--
snip--
;; QUESTION SECTION:
;hackers-arise.com. IN NS
;; ANSWER SECTION:
hackers-arise.com. 5 IN NS ns7.wixdns.net.
hackers-arise.com. 5 IN NS ns6.wixdns.net.
;; ADDITIONAL SECTION:
ns6.wixdns.net. 5 IN A 216.239.32.100
--
snip--
Listing 3-3: Using dig and its ns option to get information on a domain nameserver
Also note in the
ADDITIONAL SECTION
that this
dig
query reveals the IP
address (216.239.32.100) of the DNS server serving
hackers-arise.com. This
section may look slightly different on your system or may not show at all.
You can also use the
dig
command to get information on email
servers connected to a domain by adding the
mx
option (
mx
is short for
mail exchange server). This information is critical for attacks on email sys-
tems. For example, info on the
www.hackers-arise.com email servers is shown
in the
AUTHORITY SECTION
of Listing 3-4.
kali >
dig hackers-arise.com mx
--
snip--
;; QUESTION SECTION:
;hackers-arise.com. IN MX
;; AUTHORITY SECTION:
hackers-arise.com. 5 IN SOA ns6.wixdns.net. support.wix.com 2016052216
10800 3600 604 800 3600
--
snip--
Listing 3-4: Using dig and its mx option to get information on a domain mail exchange
server
The most common Linux DNS server is the Berkeley Internet Name
Domain (BIND). In some cases, Linux users will refer to DNS as BIND, but
don’t be confused: DNS and BIND both map individual domain names to
IP addresses.