bind: how to accept authoritative answers only?
Larry Sheldon
lsheldon at creighton.edu
Sat Jan 27 17:41:21 UTC 2001
> I tried to figure out how to configure bind (on my TSL1.2) to accept
> authoritative answers only, but I didn't succeed.
> This should help against IP-Spoofing as named would't accept answers of a
> hijacked cache that is used
> to spoof addresses. DJBDNS (Bernstein stuff) behaves that way, and I would
> have liked to configure bind to work that way.
I have no idea how to do what you are asking, but I am interested in the
assert that "authoratative" can not be spoofed.
How is that guaranteed?
--
-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-
. .
- L. F. (Larry) Sheldon, Jr. -
. Unix Systems and Network Administration .
- Creighton University Computer Center-Old Gym -
. 2500 California Plaza .
- Omaha, Nebraska, U.S.A. 68178 Two identifying characteristics -
. lsheldon at creighton.edu of System Administrators: .
- 402 280-2254 (work) Infallibility, and the ability to -
. 402 681-4726 (cellular) learn from their mistakes. .
- 402 332-4622 (residence) -
. http://www.creighton.edu/~lsheldon Adapted from Stephen Pinker .
-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-
More information about the bind-users
mailing list