How to disable record listing ?
Jim Reid
jim at rfc1035.com
Mon Jul 31 21:17:55 UTC 2000
>>>>> "Tal" == Tal Dayan <tal at zapta.com> writes:
Tal> What would be the best way to avoid third parties getting our
Tal> lists ?
I refer you to my previous answer. [What is this, Prime Minister's
Question Time? :-)] If you consider your list of customers to be
sensitive data, don't put that data in the public DNS. Restricting
zone transfers isn't enough. What if your ISP's name servers allow
your zone data to be transferred? And how could you tell the
difference between valid lookups for say cocacola.zapta.com or
pepsi.zapta.com and those lookups that are educated guesses from a bad
guy who wants to know if you have either of those purveyors of fizzy
sugar water as customers?
More information about the bind-users
mailing list