running w/ win2k as master and bind8 as slave (was win2k's dns)
steve rader
rader at teak.wiscnet.net
Wed Sep 1 14:37:01 UTC 1999
> From: Joseph S D Yao
> Authorization, yes. For audit, would it help if you had set:
>
> logging {
> ...
> category update { ... };
> category security { ... };
> category response-checks { ... };
> ...
> };
> ? [I have yet to check the code to see how much would be audited.]
Maybe I'm wrong--I don't run DDNS--but I'm pretty sure the above
logging config would not leave an audit trail with login info,
diff-like details and meta-comments (ala RCS, CVS or a change
management system.)
I recken a security expert would consider those details
necessary for providing a reasonable audit trail for a large
scale operations environment.
later
steve
- - -
systems guy
wiscnet.net
More information about the bind-users
mailing list