DDNS and Hidden Master == Brain-Damaged
Paul Vixie
vixie at sa.vix.com
Thu Jan 27 03:34:21 UTC 2005
> > then make it non-trash by some insane definition. for example, make it
> > match one of the NS.NSDNAME's, according to the "dns view" seen by your
> > dhcp population. if you want your master hidden, then make sure that
> > the non-dhcp-population sees some other SOA and NS for that zone. no
> > problem.
>
> I would have to agree that a hidden master that is seen by all your dhcp
> clients is an insane definition of hidden.
i've never seen someone hide their master internally (where dhcp runs),
only externally (to keep it from getting hacked or ddos'd). yymv.
> I think a far better solution for me is to lobotomize that section of
> code in dhcpd.
would it make sense to add syntax to dhcpd.conf allowing you to select
the address to which updates will be sent, thus bypassing res_findzonecut()?
(this is the logical equivilent of specifying the server when running the
nsupdate shell-level command.)
--
Paul Vixie
More information about the bind-users
mailing list