名称服务器中某个域的所有子域是否可以公开列出?
当查询完整的 URL(带有子域和域)时,我的浏览器将首先“查询”域的名称服务器。域的名称服务器具有“NS 条目”,它指向“最终(在大多数情况下)”名称服务器,它可以在其中尝试解析子域...
我的假设是否正确,即不可能查询(检索列表)域的所有子域? (假设目标名称服务器不允许区域文件传输)。
我的问题是,是否有可能向用户提供又长又神秘的子域名,这些子域名对这些用户来说是“私有的”(除非他们向其他人公开子域名并忽略网络层上任何潜在的“嗅探”攻击...... )
非常感谢, 一月
When querying a full URL (with Subdomain and Domain) my browser will first "query" for the Name-Server of the Domain. The Name-Server of the Domain has the "NS Entry", that points to the "final (in most cases)" Name-Server where it can try to resolve the Subdomain...
Is my assumption correct, that there is no possibility to query (retrieving a list) of all Subdomains of a Domain?
(Assuming that Zone-File Transfers are NOT allowed by the target Name-Server).
My question is, if it is possible to give out long and cryptic Subdomains to users that then are "private" to these users (unless they disclose the Subdomain name to others and ignoring any potential "sniffing" attacks on the network layers...)
Thank you very much,
jan
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(1)
不,没有办法(如果禁用区域传输,这是最常见的情况)来检索子域列表。
使用它们作为密码仍然是一个坏主意:URL 容易泄露(Google Chrome 调用 home、Alexa 等)。
No, there is no way (if zone transfer is disabled, which is the most common case) to retrieve the list of subdomains.
Using them as passwords is still a bad idea: URLs tend to leak (Google Chrome calls home, Alexa, etc).