Unapproved AXFR?
Bill Manning
bmanning at ISI.EDU
Tue Dec 14 16:25:37 UTC 1999
% seen an answer to my question: is there a _technical_ reason to limit
% zone transfers (except for server overload)?
%
% If you name machines after users, projects, etc. then zone transfers can
% divulge proprietary information. Most companies have a policy that the
% employee directory can't be distributed to outsiders; if the DNS database
% is almost equivalent, it makes sense not to distribute it, either.
%
% --
% Barry Margolin, barmar at bbnplanet.com
% GTE Internetworking, Powered by BBN, Burlington, MA
That, like the two reasons I gave, is not a technical justification, its
administrative/policy.
The reasons to allow AXFR, from a technical perspective, seem to outweigh
the reasons to disallow AXFR.
--bill
More information about the bind-users
mailing list