Pingdom DNS Warnings: Should I worry?


Memento
Asked:
2012-03-27 1:49 pm EST

Hits: 3,289
Greetings,

Am a small biz owner, who knows only so much about the details of DNS issues.

Pingdom gives me 2 warnings about our setup.

Question: should I be worried? If so, what should I do?

The two warnings:

1. Name server ns.inmotionhosting.com (74.124.210.242) is recursive.

The name server answers recursive queries for 3rd parties (such as DNSCheck). By making a recursive query to a name server that provides recursion, an attacker can cause a name server to look up and cache information contained in zones under their control. Thus the victim name server is made to query the attackers malicious name servers, resulting in the victim caching and serving bogus data.

2. No SOA record found for www.mementopress.com.

No SOA record was found when querying the name server. This is most probably due to a misconfiguration at the name server - a zone must have a SOA record.

You must login before you can ask a follow up question.

You must login before you can submit an answer.

Best answer chosen by User

0

BradM
Staff
5,399 Points
2012-03-27 2:19 pm EST
Hi Memento,

The name server answers recursive queries for 3rd parties

I followed up with our Tier2 team on this, and I also did some testing myself. It appears that the test results you're looking at are returning a false positive.


In my testing, I did both dig and host testing (dig and host are dns tools). Here are the raw results of the host tests:


host www.yahoo.com ns.inmotionhosting.com
Using domain server:
Name: ns.inmotionhosting.com
Address: 74.124.210.242#53
Aliases:

Host www.yahoo.com not found: 2(SERVFAIL)





host inmotiontesting.com ns.inmotionhosting.com
Using domain server:
Name: ns.inmotionhosting.com
Address: 74.124.210.242#53
Aliases:

inmotiontesting.com has address 70.39.145.13



The tests were ran against 2 domains, inmotiontesting.com (a test domain we own and host) and yahoo.com. The host command returns the results for our domain (which it should), however it does not return anything for yahoo.com, and instead returns the SERVFAIL error. The yahoo.com query failing shows us that our nameservers are not giving results for domain names that are not under our control.


No SOA record found for www.mementopress.com

I believe this error is due to the test being ran on the "www" subdomain. When you run the test on the domain name itself, mementopress.com (without www), it passes the SOA test:


SOA
Everything is fine.
All tests successful in this part, no errors or warnings.


I hope this helps answer your question. Feel free to post a comment at the bottom of this page if we can help any further!

Thanks,
- Brad

You must login before you can post a comment about this answer.

right..i had the same issue in pingdom to one of my VPS servers, i had an No SOA record found but when i check it double it with out www. was cool!
Autonomos
3 Points
2014-08-14 6:53 pm EST
Like this Question?

Related Articles

It looks like there are no related articles.
Would you like to ask a question about this page? If so, click the button below!
Ask a Question

Need more Help?

Search

Ask the Community!

Get help with your questions from our community of like-minded hosting users and InMotion Hosting Staff.

Current Customers

Chat: Click to Chat Now E-mail: support@InMotionHosting.com
Call: 888-321-HOST (4678) Ticket: Submit a Support Ticket

Not a Customer?

Get web hosting from a company that is here to help. Sign up today!