Bind open to query from anyone
Jonathan Petersson
jpetersson at garnser.se
Mon Jan 5 11:27:03 UTC 2009
In general I would think that it isn't recommended unless it's
intended, you probably don't want random client querying your servers
for content you don't control.
To kill this add "recursion no;" in options, if you do want this
enables for certain prefixes have a look at "allow-recursion".
Good luck,
/Jonathan
On Mon, Jan 5, 2009 at 3:15 AM, Chris Henderson <henders254 at gmail.com> wrote:
> I've setup a secondary name server which works as a secondary or slave
> name server for my zone or domain name. However, I have tested and
> noticed that I can query for non-authoritative answers from my
> secondary or slave name server from outside my network. That is, any
> one can use my name server to query any host name, eg. www.google.com,
> www.yahoo.com etc. Is this a bad idea? How can I stop this?
>
> Thanks for any suggestions.
> _______________________________________________
> bind-users mailing list
> bind-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
>
More information about the bind-users
mailing list