Loading [MathJax]/jax/output/CommonHTML/config.js
首页
学习
活动
专区
圈层
工具
发布
首页
学习
活动
专区
圈层
工具
MCP广场
社区首页 >专栏 >Whois协议理解与用途

Whois协议理解与用途

作者头像
yumusb
发布于 2020-04-22 02:34:12
发布于 2020-04-22 02:34:12
1.9K00
代码可运行
举报
文章被收录于专栏:坏男孩坏男孩
运行总次数:0
代码可运行

前言

Linux下有whois命令可以帮助我们快速的查看IP/域名的whois信息,原先我一直以为这个命令是通过http接口来查询whois,然后注册商提供这个API接口…知道今天抓了一个包才发现一个完全不知道的协议—-“whois协议”

以下是我抓到的包(可以放大看下)

在"protocol"一栏清楚的写着"whois”,这瞬间就是知识盲区了;追踪TCP流的内容如下:

代码语言:javascript
代码运行次数:0
运行
AI代码解释
复制
huai.pub
VACY
Admin Postal Code: REDACTED FOR PRIVACY
Admin Country: REDACTED FOR PRIVACY
Admin Phone: REDACTED FOR PRIVACY
Admin Phone Ext: REDACTED FOR PRIVACY
Admin Fax: REDACTED FOR PRIVACY
Admin Fax Ext: REDACTED FOR PRIVACY
Admin Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.
Registry Tech ID: REDACTED FOR PRIVACY
Tech Name: REDACTED FOR PRIVACY
Tech Organization: REDACTED FOR PRIVACY
Tech Street: REDACTED FOR PRIVACY
Tech City: REDACTED FOR PRIVACY
Tech State/Province: REDACTED FOR PRIVACY
Tech Postal Code: REDACTED FOR PRIVACY
Tech Country: REDACTED FOR PRIVACY
Tech Phone: REDACTED FOR PRIVACY
Tech Phone Ext: REDACTED FOR PRIVACY
Tech Fax: REDACTED FOR PRIVACY
Tech Fax Ext: REDACTED FOR PRIVACY
Tech Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.
Name Server: uma.ns.cloudflare.com
Name Server: darl.ns.cloudflare.com
DNSSEC: signedDelegation
URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/
>>> Last update of WHOIS database: 2020-01-04T15:45:47Z <<<

For more information on Whois status codes, please visit https://icann.org/epp

Terms of Use: Donuts Inc. provides this Whois service for information purposes, and to assist persons in obtaining information about or related to a domain name registration record. Donuts does not guarantee its accuracy. Users accessing the Donuts Whois service agree to use the data only for lawful purposes, and under no circumstances may this data be used to: a) allow, enable, or otherwise support the transmission by e-mail, telephone, or facsimile of mass unsolicited, commercial advertising or solicitations to entities other than the registrar...s own existing customers and b) enable high volume, automated, electronic processes that send queries or data to the systems of Donuts or any ICANN-accredited registrar, except as reasonably necessary to register domain names or modify existing registrations. When using the Donuts Whois service, please consider the following: The Whois service is not a replacement for standard EPP commands to the SRS service. Whois is not considered authoritative for registered domain objects. The Whois service may be scheduled for downtime during production or OT&E maintenance periods. Queries to the Whois services are throttled. If too many queries are received from a single IP address within a specified time, the service will begin to reject further queries for a period of time to prevent disruption of Whois service access. Abuse of the Whois system through data mining is mitigated by detecting and limiting bulk query access from single sources. Where applicable, the presence of a [Non-Public Data] tag indicates that such data is not made publicly available due to applicable data privacy laws or requirements. Should you wish to contact the registrant, please refer to the Whois records available through the registrar URL listed above. Access to non-public data may be provided, upon request, where it can be reasonably confirmed that the requester holds a specific legitimate interest and a proper legal basis for accessing the withheld data. Access to this data can be requested by submitting a request via the form found at https://donuts.domains/about/policies/whois-layered-access/ Donuts Inc. reserves the right to modify these terms at any time. By submitting this query, you agree to abide by this policy.

正文

于是查找了一下相关资料,才知道这是一种运行在43端口上的协议…

当然在 /etc/services 也有收录

代码语言:javascript
代码运行次数:0
运行
AI代码解释
复制
[email protected]:~/Desktop$ cat /etc/services | grep "43"
whois		43/tcp		nicname

特点

TCP43端口就是他的特点, 一般都在whois.nic.[域名后缀]上运行,比如.pub域名所使用的服务器就是whois.nic.pub.我们可以用telnet对其进行交互(框内是我输入的内容)

用途

用途也只有一个,那就是供用户查询,没有其他花里胡哨的作用,也没有华丽的界面功能.一视同仁,没有任何身份验证.

更多资料:

本文参与 腾讯云自媒体同步曝光计划,分享自作者个人站点/博客。
如有侵权请联系 cloudcommunity@tencent.com 删除

本文分享自 作者个人站点/博客 前往查看

如有侵权,请联系 cloudcommunity@tencent.com 删除。

本文参与 腾讯云自媒体同步曝光计划  ,欢迎热爱写作的你一起参与!

评论
登录后参与评论
暂无评论
推荐阅读
编辑精选文章
换一批
avlang php,www.avlang12.info
Registry Domain ID: D503300000025463124-LRMS
全栈程序员站长
2022/08/10
6.3K0
avlang php,www.xcnxm.com
Registry Domain ID: 2006268495_DOMAIN_COM-VRSN
全栈程序员站长
2022/07/01
1.4K0
btav狼php,www.bvlang5.com[通俗易懂]
Registry Domain ID: 2183015930_DOMAIN_COM-VRSN
全栈程序员站长
2022/08/13
2.9K0
全球首个产设研一体 AI 全栈高级工程师 | 首批邀请码用户“内幕谍照”曝光-这次我换个思路,肝个网站
https://cloud.tencent.com/developer/article/2539030
相柳
2025/07/18
600
全球首个产设研一体 AI 全栈高级工程师 | 首批邀请码用户“内幕谍照”曝光-这次我换个思路,肝个网站
haoxav.com forum.php,www.wwwhaoav17com.us
Registrar URL (registration services): whois.todaynic.com
全栈程序员站长
2022/08/11
82K0
btav狼php,www.xiaav.cc
Registry Expiry Date: 2017-05-27T13:45:23Z
全栈程序员站长
2022/06/27
1.6K0
BGP数据中心鉴别方法3
上海Ucloud BGP [root@h101 ~]# traceroute -A 101.52.131.7 traceroute to 101.52.131.7 (101.52.131.7), 30 hops max, 60 byte packets 1 192.168.2.75 (192.168.2.75) [*] 0.507 ms 192.168.2.254 (192.168.2.254) [*] 0.507 ms 0.523 ms 2 58.246.136.1 (58.246.13
franket
2022/04/25
4350
护网Linux应急处置操作手册-Tools篇
HVV行动已经进行到了11天,处置的工作明显增多,随着各种情况发生,所以这两天分别整理一些关于Linux和Windows的排查手册。
Khan安全团队
2020/09/27
4.7K0
护网Linux应急处置操作手册-Tools篇
BGP数据中心鉴别方法4
可知AS59089分别和AS24138、AS56048建立了BGP连接,是一个双线BGP
franket
2022/04/25
4570
BGP数据中心鉴别方法5
广东Ucloud BGP [root@h101 ~]# traceroute -A 114.119.43.116 traceroute to 114.119.43.116 (114.119.43.116), 30 hops max, 60 byte packets 1 192.168.2.75 (192.168.2.75) [*] 0.524 ms 0.977 ms 0.396 ms 2 58.246.136.1 (58.246.136.1) [AS17621] 3.100 ms 2
franket
2022/04/25
5140
BGP数据中心鉴别方法1
从结果信息得知 103.21.116.0 - 103.21.119.255 段的ip 都属于ANCHNET 安畅网络公司
franket
2022/04/25
3930
使用python-whois模块查询域名
通过域名注册信息,可以知道一个网站背后的公司信息,这个还是很厉害的,你用其他语言想查询这个,不好下手吧?
py3study
2020/01/07
6.1K0
bWAPP练习
虚拟机下载地址: https://www.vulnhub.com/entry/bwapp-bee-box-v16,53/
全栈程序员站长
2022/11/09
1.3K0
bWAPP练习
实战解决域名/主机商转出域名索要费用问题② - Whois域名所有权信息变更
继"域名商沟通及ICANN投诉篇"之后3天左右时间收到来自ICANN的回信,大概的意思和老蒋预估的相似,提到是因为看到的域名WHOIS信息(因为被域名商家设置隐私保护)与我实际的个人信息提交时候不符。要求我重新更新个人信息,或者看是否可以提交其他的投诉表格(我检查后看到还有一个WHOIS申诉表)。
老蒋
2021/12/27
5.7K0
实战解决域名/主机商转出域名索要费用问题② - Whois域名所有权信息变更
Python 刷简书的浏览量 阅读数端午节快乐。熬夜看世界杯,先刷到 10k 吧。简易爬虫 common.py
端午节快乐。熬夜看世界杯,先刷到 10k 吧。 ---- 使用 homebrow 安装 python 安装库时不需要再输入 [sudo] 。 $ brew install python # python 3 $ brew install python@2 # python 2 $ pip install virtualenv # 虚拟环境 $ pip install virtualenvwrapper $ cat ~/.bashrc export WORKON_HOME=$HOME/.virtualenvs
iOSDevLog
2018/06/19
8400
★Kali信息收集~★6.Dmitry:汇总收集
概述: DMitry(Deepmagic Information Gathering Tool)是一个一体化的信息收集工具。它可以用来收集以下信息: 1. 端口扫描 2. whois主机IP和域名信息
逸鹏
2018/04/09
8740
★Kali信息收集~★6.Dmitry:汇总收集
DNSPod十问Matt Overman:二维码真的代替域名了吗?
问答时间:2020年6月24日 嘉宾简介: Matt Overman(SVP):Donuts注册局高级副总裁,Matt负责领导域名货币化和高级域名市场。曾任NameJet总经理,领导其成为域名行业龙头拍卖市场。 Matt Overman(SVP):  Senior Vice President of  Donuts,Matt led Rightside’s monetization and premium domain sales business. Matt previously served as
腾讯云DNSPod团队
2020/06/28
7800
python 爬虫 | 检查网站情况
2、识别网站所用的技术 在爬去网站之前,了解网站使用的技术,会对爬去数据有一定的印象。这里使用builtwith模块来探测网上搭建的技术。
努力在北京混出人样
2019/02/18
9600
ECOM6013 Topic 2 Internet and E-Commerce Infrasture
It uses routers (special purpose computers that interconnect the computer networks that make up the internet and route packets)
pseudoyu
2023/04/11
3660
ECOM6013 Topic 2 Internet and E-Commerce Infrasture
四个 Linux 上的网络信息嗅探工具
在计算机网络中,数据是暴露的,因为数据包传输是无法隐藏的,所以让我们来使用 whois、dig、nmcli 和 nmap 这四个工具来嗅探网络吧。
用户8639654
2021/10/14
1K0
相关推荐
avlang php,www.avlang12.info
更多 >
领券
问题归档专栏文章快讯文章归档关键词归档开发者手册归档开发者手册 Section 归档
本文部分代码块支持一键运行,欢迎体验
本文部分代码块支持一键运行,欢迎体验