False positive on inscure zone update by IP?
Mark Andrews
marka at isc.org
Mon Nov 28 20:45:27 UTC 2016
In message <20161128195746.GA11375 at weiser.dinsnail.net>, Michael Weiser writes:
> Hi Kevin,
>
> On Mon, Nov 28, 2016 at 05:39:16PM +0000, Darcy Kevin (FCA) wrote:
>
> > why
> > specify "allow-update { none; };" when that's the default?
> [...]
> > If you're doing that only for documentation purposes, you could use a
> > comment instead.
>
> Thanks Kevin! It never occured to me to just try commenting it out (and
> researching the default) which indeed gets rid of the message. I'll
> raise this with my Linux distribution (Gentoo).
Don't bother.
4507. [bug] Named could incorrectly log 'allows updates by IP
address, which is insecure' [RT #43432]
> --
> Thanks again,
> Michael
> _______________________________________________
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list
>
> bind-users mailing list
> bind-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: marka at isc.org
More information about the bind-users
mailing list