9.1.3 - zone transfer denied

Barry Finkel b19141 at achilles.ctd.anl.gov
Thu Jul 12 15:08:08 UTC 2001


mayer at relay.bfl.at ( mayer hans ) wrote in reply to Barry Margolin:

>>>setting up bind 9.1.3 i see in the log like this: 
>>>Jul 06 15:10:14.961 client 164.128.36.54#42168: zone transfer denied
>>>
>>>older versions (8) also told me the zone the hacker tried to transfer,
>>>for example:
>>>07-Feb-2001 19:18:58.100 unapproved AXFR from [164.77.222.162].3568 for
>>>"bfl.ac.at" (acl)
>>>
>>>any idea, how to configure version 9 to be more verbose in the logfile ? 
>>
>>You generally can't.  The wording of log messages is hard-coded, not
>>configurable.
>
>that's bad.
>maybe the developer team is reading this
>1st, thanks for this stable product and 
>2nd, my whishes for x-mas: 
> i want to see the zone in the log

I may be missing something here, but it appears to me that the message

     07-Feb-2001 19:18:58.100 unapproved AXFR from 
             [164.77.222.162].3568 for "bfl.ac.at" (acl)

needs no more information.  It says that the machine at IP address

     164.77.222.162

attempted to transfer the zone

     bfl.ac.at

but your BIND configuration access control list (acl) denied the request.
If "bfl.ac.at" is not the zone in question, then I am not sure what
that string represents.
----------------------------------------------------------------------
Barry S. Finkel
Electronics and Computing Technologies Division
Argonne National Laboratory          Phone:    +1 (630) 252-7277
9700 South Cass Avenue               Facsimile:+1 (630) 252-9689
Building 221, Room B236              Internet: BSFinkel at anl.gov
Argonne, IL   60439-4844             IBMMAIL:  I1004994



More information about the bind-users mailing list