denied updated
Mark_Andrews at isc.org
Mark_Andrews at isc.org
Thu Sep 13 06:54:00 UTC 2001
>
> Mark_Andrews at isc.org wrote:
> >
> > The best way to fix this is to fix the offending computer
> > that is sending the updates. This is most probably a
> > a computer owned by you / your company (perhaps dialing
> > into a ISP).
> [...]
> > You could also send the security category to the null channel
> > however that would blind you to other security incidents.
>
> on bind9 at least, you can also do the following:
> category "update" { "null"; };
>
> no?
No. ns_client_checkacl() sends to the security category and it is
what is used to verify access. See bin/named/update.c.
Mark
>
> -w
>
> --
> Sintax error in config file! (line 378)
> aborted!
>
> GPG Public Key:
> http://infinitejazz.net/will/pgp/
>
--
Mark Andrews, Internet Software Consortium
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: Mark.Andrews at isc.org
More information about the bind-users
mailing list