More on BIND 9.1, Views, and Zone Transfers
Jim Reid
jim at rfc1035.com
Fri Feb 9 19:12:18 UTC 2001
>>>>> "Dan" == D J Bernstein <75628121832146-bind at sublist.cr.yp.to> writes:
>> As a result, the information in both views will be identical,
>> and private data will leak to external clients.
Dan> Right. This is one of many flaws in the zone-transfer concept.
Nonsense. No matter how DNS data gets replicated between servers - even
with your non-standards compliant and non-interoperable with other name
servers rsync over SSH - private data will leak to the outside if it's
put in the public version of a zone.
BTW, since when did djbdns implement something like views?
More information about the bind-users
mailing list