DNS Queries Using API - BIND9
Vadim Pavlov
pvm_job at mail.ru
Mon May 11 06:57:01 UTC 2020
If your users has admins permissions you probably will not find any open source tool which support that. For restricted accounts on Win - create policies.
BR,
Vadim
> On May 10, 2020, at 23:52, Blason R <blason16 at gmail.com> wrote:
>
> Thats a nice starting point -
>
> https://www.nginx.com/blog/using-nginx-as-dot-doh-gateway/ <https://www.nginx.com/blog/using-nginx-as-dot-doh-gateway/>
>
> But still looking for any client utility so that users can not shutdown or can not suspend the service
>
> On Mon, May 11, 2020 at 12:18 PM Blason R <blason16 at gmail.com <mailto:blason16 at gmail.com>> wrote:
> Hmm- Any docs on configuring DOH Proxy?
>
> On Mon, May 11, 2020 at 11:56 AM Daniel Stirnimann <daniel.stirnimann at switch.ch <mailto:daniel.stirnimann at switch.ch>> wrote:
>
>
> On 11.05.20 08:18, Vadim Pavlov via bind-users wrote:
> > The main issue that bind does’t provide an authentication method. So in
> > any case you somehow should manage the access to the DNS server vice
> > versa it will became open resolver and will be used for DDoS attacks.
>
> If you were to use DoH, you could use Basic Authentication. The DoH URL
> you could configure on your client systems could be something like this:
>
> https://username:password@doh.example.com/dns-query <https://username:password@doh.example.com/dns-query>
>
>
> Daniel
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20200510/c2a4d864/attachment.htm>
More information about the bind-users
mailing list