root and in-addr.arpa zone transfers
Stephane Bortzmeyer
bortzmeyer at nic.fr
Thu Sep 10 09:24:42 UTC 2009
On Wed, Sep 09, 2009 at 08:23:23AM +0200,
Michael Monnerie <michael.monnerie at is.it-management.at> wrote
a message of 54 lines which said:
> right now I'm using scripts to download root.zone and in-addr.arpa
> from internic.net. But this is a non-standard way,
But a secure way since the files on internic.net are PGP-signed.
> I'd prefer to directly slave and zone-transfer those 2 zones.
That's widely regarded as a bad practice.
FreeBSD backed off:
<http://lists.freebsd.org/pipermail/freebsd-stable/2007-August/036545.html>
Why it is a bad idea:
<http://lists.freebsd.org/pipermail/freebsd-stable/2007-August/036470.html>
Discussion:
<https://lists.dns-oarc.net/pipermail/dns-operations/2007-August/001891.html>
More information about the bind-users
mailing list