specify hosts not in local domain
Michael Kjorling
michael at kjorling.com
Tue Feb 12 19:21:22 UTC 2002
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Well, I believe that for Yahoo you can do the same with scs.yahoo.com.
At least that is the host GAIM <http://gaim.sf.net> uses by default
for Yahoo.
And blocking access to external name servers is fairly easy, at least
if you only care about blocking 99.9-or-so-percent of the users. Only
allow TCP and UDP on port 53 to/from the internal caching DNS
server(s) - and of course any masters or slaves you may have.
Michael Kjörling
On Feb 12 2002 17:39 -0000, those who know me have no need of my name wrote:
> >To answer the original querier:
> >
> >zone "oscar.aol.com" IN {
> > type "master";
> > file "zone.redirect";
> >};
>
> this works for aim only because oscar.aol.com is a subdomain which has no
> other purpose. (i.e., this doesn't work for yahoo messenger.)
>
> also, for this to *really* work you have to prevent use of external
> nameservers.
- --
Michael Kjörling -- Programmer/Network administrator ^..^
Internet: michael at kjorling.com -- FidoNet: 2:204/254.4 \/
PGP: 95f1 074d 336d f8f0 f297 6a5b 2aa3 7bfd 8a70 e33e
``And indeed people sometimes speak of man's "bestial" cruelty, but
this is very unfair and insulting to the beasts: a beast can never be
so cruel as a man, so ingeniously, so artistically cruel.''
(Ivan Karamazov, in Dostoyevsky's 'The Brothers Karamazov')
*** Thinking about sending me spam? Take a close look at
*** http://michael.kjorling.com/spam/ before doing so.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: Public key is at http://michael.kjorling.com/contact/pgp.html
iD8DBQE8aWs0KqN7/Ypw4z4RAhHxAKDN5GD9YA3c/Wceu5QXXl6zBKys0gCfW7Xj
yL5xpO5tP0XiNOFpivBFe8M=
=CHWT
-----END PGP SIGNATURE-----
More information about the bind-users
mailing list