stomping forwarders

Randy Bush randy at psg.com
Thu Dec 16 15:32:50 UTC 1999


> acl my-users { 192.168.10.0/24; 172.18.0.0/16; };
>
> options {
>   allow-query { my-users; };
>   ...
> };
>
> zone "something.com" {
>   ...
>   allow-query { any; };
> };
>
> zone "someone-else.org" {
>   ...
>   allow-query { any; };
> };
>
> and so on.

two issues with this

  o it does not *aggressively* attack the folk pointing their resolvers
    at me.

  o the particular server has about 10,000 zones, most of which come in
    via (authenticated) emailed $include files which would be crufty to
    hack

randy


More information about the bind-users mailing list