... | ... | @@ -51,6 +51,7 @@ Extending this to DNS and DNS servers, scoring should assume that: |
|
|
* has XFR privileges for one or more zones the target server is authoritative for
|
|
|
* has a key for rndc that allows only read-only operations
|
|
|
* has credentials that BIND can validate using GSSAPI
|
|
|
* knows the secret for any configured key
|
|
|
* H - High - attacker must have admin privileges over the target system
|
|
|
|
|
|
### User Interaction (UI)
|
... | ... | |