By vinsbalingan
I’m using DO’s DNS service and upon looking up DNSStuff, I got this warning below,
"One or more nameservers responded to version queries. This can be considered a breach of security. If a malicious person or program had access to a version-specific exploit for your DNS server, displaying the version info openly will make their attack much easier. This should be removed or obscured. The nameservers that responded to version queries are:
69.55.62.20 responded with “9.8.1-P1” 141.0.175.217 responded with “9.8.1-P1” "
Is there really a “breach of security” or can i just safely ignore the warning? Anything I and/or DO can do to “fix” this? Much thanks.
This textbox defaults to using Markdown to format your answer.
You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!
It’s not really a breach. The majority of DNS nameservers will respond to version requests. All that means is that anyone is able to see what version of the BIND software they are running. In fact, I’m sort of surprised all three NS’s didn’t respond. If there’s an issue at all, perhaps it’s with the last nameserver -not- responding to the version request. <br> <br>You can safely ignore it.
Become a contributor for community
Get paid to write technical tutorials and select a tech-focused charity to receive a matching donation.
DigitalOcean Documentation
Full documentation for every DigitalOcean product.
Resources for startups and AI-native businesses
The Wave has everything you need to know about building a business, from raising funding to marketing your product.
The developer cloud
Scale up as you grow — whether you're running one virtual machine or ten thousand.
Get started for free
Sign up and get $200 in credit for your first 60 days with DigitalOcean.*
*This promotional offer applies to new accounts only.