unapproved AXFR ???
Jim Reid
jim at rfc1035.com
Wed Mar 29 07:04:43 UTC 2000
>>>>> "Istvan" == =?iso-8859-2?Q?Tak=E1cs Istv=E1n?= <iso-8859-2> writes:
Istvan> Hi, I've just find this on our Solaris 2.6's syslog:
Istvan> Mar 29 07:40:10 server named[150]: unapproved AXFR from [external IP address].2865 for "12.16.193.in-addr.arpa" (acl)
Istvan> We run Bind 8.2.2p5 What should I do with this messages?
Whatever action is specified in your security policy. You decided for
some reason to restrict zone transfers for some zones on your name
server. Presumably this was documented. So that document should
explain what to do whenever you find other IP addresses attempting
zone transfers for those zones. I would suggest that at the very least
you complain to the owners of these offending IP addresses and find
out why they're trying zone transfers for zones that you won't allow
them to transfer.
More information about the bind-users
mailing list