Bind allowing localhost maps
Kevin Darcy
kcd at daimlerchrysler.com
Fri Mar 10 23:26:19 UTC 2000
What exactly do you mean by "stop functioning"? And how does this
non-functioning help the situation?
BIND just answers what it is told to answer, and if someone wants to MX to
localhost, then BIND shouldn't be making value judgements as to whether
this is a "good" or a "bad" record. If you want to ensure that your mailer
never connects to localhost or to 127.0.0.1 when trying to relay a message,
then configure this logic IN YOUR MAIL SERVER. Leave BIND out of it.
- Kevin
Robert Weber wrote:
> This is a report I got from our campus spamcop. It I verified I can do
> this with bind 8.2.2p5 by CNAME'ing my machine to localhost. The domain
> is rejected as authoritive BUT it still resolves making a clever hole
> for spamers. Can this be looked into so bind will stop functioning when
> such a resoultion to localhost or 127.0.0.1 is made?
>
> ------- Forwarded Message
>
> Return-Path: hugger at Colorado.EDU
> Date: Fri, 10 Mar 2000 13:59:58 -0700
> From: Phil Hugger <hugger at Colorado.EDU>
>
> Those wiley spammers are getting pretty inventive.
>
> > ----- Transcript of session follows -----
> > 554 MX list for internet.net. points back to boulder.Colorado.EDU
> > 554 <dsmith at internet.net>... Local configuration error
>
> Oh, really?
>
> ~>nslookup -q=mx internet.net
> Server: boulder.Colorado.EDU
> Address: 128.138.240.1
>
> Non-authoritative answer:
> internet.net preference = 5, mail exchanger = localhost
>
> ...cute.
>
> > Subject: Fw: really works!
> >
> > This is not SPAM. This e-mail has been sent to you in opt
> > in subscribers news service.
>
> Sure.
>
> - -Phil
>
> ------- End of Forwarded Message
More information about the bind-users
mailing list