MS dynamic DNS supports static and dynamic entries in same zone?
Danny Mayer
mayer at gis.net
Fri Nov 30 02:22:17 UTC 2001
At 08:50 PM 11/28/01, Greg Robinson wrote:
>Someone pointed out, that if the DHCP server registers a forward and reverse
>map on behalf of the client, then the DHCP server can change any record it
>owns.
>
>So, what's the diference between the client or the DHCP server doing DDNS
>updates?
Because you can restrict the updates to just the DHCP Server which you would
normally control. You have absolutely NO control over any of the individual
clients. A DHCP Server will add or delete only those records for addresses that
it allocates and no other. Access control is only at the zone level and
not the
individual Record level. A client with access could register itself as the web
server for example, or delete the web server records. For that matter a virus-
infected Windows client could go ahead and delete all of the records in the
DDNS zones.
Danny
More information about the bind-users
mailing list