Ok.. so I don't know if we would like to add it or even how we should scan it, but..

We scanned several hosts and with the most recent version we suddenly got hits we did not expect, from servers dat don't even have Java installed. Turns out some of our customers have applications that mail error reports when something fails. This script triggered an exception and the report contained the UUID-based hostname. Somewhere in the path from the server to the recipient a mail server performed the lookup.

We've excluded our infrastructure and mail server and excluded this particular mail client. Although we've informed all we could inform it's currently out of our hands to resolve and I don't know what part is affected. However, it might be interning to try to detect this.

I've managed to reproduce it by sending two mails (one with the string in the subject and one with the string in the body)

The problem regarding testing this would be finding a path to send mail though. I've created this issue to at least dump my thoughts about it

... to at least continue processing lists

I was running a scan in a tmux just do find out the tool doesn't really like ipv6 ip addresses or some other entries in my list. It would be easier to just continue scanning. The operator in any case still has to check the output to see if something failed.

The instructions to setup the DNS server are not clear for me. Can you please help?

1. What are these DNS names log4jchecker.northwave.nl, log4jdnsreq.northwave.nl.
2. Where do we need to setup the DNS entry?
3. What is happening when we run the script?
4. When following the instructions to start bind9, i get a message that bind9 is disabled.

Can you provide sample zone configuration files that works for bind9? I have the following configurations but I cannot seem to resolve the following queries:

HOST: $ nslookup ns1 Server: 127.0.0.53 Address: 127.0.0.53#53

** server can't find ns1: SERVFAIL

HOST.DOMAIN: $ nslookup ns1.example Server: 127.0.0.53 Address: 127.0.0.53#53

** server can't find ns1.example: NXDOMAIN

FQDN: $ nslookup ns1.example.local Server: 127.0.0.53 Address: 127.0.0.53#53

** server can't find ns1.example.local: SERVFAIL

Configurations:

/etc/bind/db.local ; ; BIND data file for local loopback interface ; $TTL 604800 @ IN SOA localhost. root.localhost. ( 2 ; Serial 604800 ; Refresh 86400 ; Retry 2419200 ; Expire 604800 ) ; Negative Cache TTL ; @ IN NS localhost. @ IN A 127.0.0.1 @ IN AAAA ::1

/etc/bind/db.example.local $TTL 604800 @ IN SOA ns1.example.local. root.ns1.example.local. ( 4 ; Serial 604800 ; Refresh 86400 ; Retry 2419200 ; Expire 604800 ) ; Negative Cache TTL ; @ IN NS ns1.example.local. ns1 IN A 192.168.110.153 log4jdnsreq 3600 IN NS ns1.example.local.