transfer-source in 9.3.0
Mark Andrews
Mark_Andrews at isc.org
Sun Nov 28 07:05:09 UTC 2004
> I have bind 9.3.0 installed on solaris 8 sparc, the host is dual-homed.
> primary address is 192.168.3.34, secondary is 192.168.3.37
>
> named.conf contains
>
> transfer-source 192.168.3.37;
>
> yet it logs this:
>
> 28-Nov-2004 06:10:37.518 xfer-in: info: transfer of 'private/IN' from 192.168.
> 3.33#53: connected using 192.168.3.34#37032
>
> Note it is using the .34 address for transfer instead of the .37 specified
> for transfer-source.
>
> This worked in 9.2.3, am I missing something?
From CHANGES.
1446. [func] Implemented undocumented alternate transfer sources
from BIND 8. See use-alt-transfer-source,
alt-transfer-source and alt-transfer-source-v6.
SECURITY: use-alt-transfer-source is ENABLED unless
you are using views. This may cause a security risk
resulting in accidental disclosure of wrong zone
content if the master supplying different source
content based on IP address. If you are not certain
ISC recommends setting use-alt-transfer-source no;
> Thanks,
>
> Richard.
>
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: Mark_Andrews at isc.org
More information about the bind-users
mailing list