specify hosts not in local domain

[Michael Kjorling]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Well, I believe that for Yahoo you can do the same with scs.yahoo.com.
At least that is the host GAIM <http://gaim.sf.net> uses by default
for Yahoo.

And blocking access to external name servers is fairly easy, at least
if you only care about blocking 99.9-or-so-percent of the users. Only
allow TCP and UDP on port 53 to/from the internal caching DNS
server(s) - and of course any masters or slaves you may have.


Michael Kjörling


On Feb 12 2002 17:39 -0000, those who know me have no need of my name wrote:

> >To answer the original querier:
> >
> >zone "oscar.aol.com"	IN {
> >	type "master";
> >	file "zone.redirect";
> >};
>
> this works for aim only because oscar.aol.com is a subdomain which has no
> other purpose.  (i.e., this doesn't work for yahoo messenger.)
>
> also, for this to *really* work you have to prevent use of external
> nameservers.

- -- 
Michael Kjörling  --  Programmer/Network administrator  ^..^
Internet: michael at kjorling.com -- FidoNet: 2:204/254.4   \/
PGP: 95f1 074d 336d f8f0 f297 6a5b 2aa3 7bfd 8a70 e33e

``And indeed people sometimes speak of man's "bestial" cruelty, but
this is very unfair and insulting to the beasts: a beast can never be
so cruel as a man, so ingeniously, so artistically cruel.''
(Ivan Karamazov, in Dostoyevsky's 'The Brothers Karamazov')

*** Thinking about sending me spam? Take a close look at
*** http://michael.kjorling.com/spam/ before doing so.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: Public key is at http://michael.kjorling.com/contact/pgp.html

iD8DBQE8aWs0KqN7/Ypw4z4RAhHxAKDN5GD9YA3c/Wceu5QXXl6zBKys0gCfW7Xj
yL5xpO5tP0XiNOFpivBFe8M=
=CHWT
-----END PGP SIGNATURE-----