Blocking malware URL lookup using BIND

[Phil Mayers]

On 10/25/2011 10:03 AM, babu dheen wrote:
> Dear All,
> We are seeing huge number of malware request going to malware domains
> performed by some malware infected clients.

This was discussed on the list just the other day; you have two options:

  1. Create a dummy zone with no content for each hostname/zone you want 
to block
  2. Use a newer version of bind and implement RPZ

See the discussion "DNS Sinkhole in BIND" for more info.