Security Error
Barry Margolin
barmar at alum.mit.edu
Sat Jan 28 16:17:22 UTC 2006
In article <drfap0$2v5a$1 at sf1.isc.org>,
Josh Hyles <josh.maillists at gmail.com> wrote:
> On 1/28/06, Barry Margolin <barmar at alum.mit.edu> wrote:
> > In article <drcdiv$i2k$1 at sf1.isc.org>,
> > Josh Hyles <josh.maillists at gmail.com> wrote:
> > > 26-Jan-2006 22:06:46.618 xfer-out: info: client 15.243.224.31#37832:
> > > view external: transfer of 'goatinatree.com/IN': AXFR started
> > > 26-Jan-2006 22:06:46.618 xfer-out: info: client 15.243.224.31#37832:
> > > view external: transfer of 'goatinatree.com/IN': AXFR ended
> > > 26-Jan-2006 23:01:23.040 update-security: error: client
> > > 12.45.64.7#1031: view external: update 'goatinatree.com/IN' denied
> > >
> > > So I must be wrong, they must be for different things, I thought the
> > > error was in place of the starting and stopping of a transfer.
> >
> > Yes, they're different things. The "denied" message means that some
> > random machine 12.45.64.7 is trying to modify something in the
> > goatinatree.com domain. It could be a PC that just got its address
> > using DHCP, and is trying to create a DNS entry for itself.
>
> The weird thing to me is tha NS1 is 12.45.64.7 and so that would mean
> that the machine itself is trying to change something. The wayI have
> it setup is that the DNS server for this network adaptor is 127.0.0.1
> so maybe I have something set in there that is making the nic think it
> needs to register in DNS. I'll check that thanks.
Are you running a DHCP server on that machine? Many of them can be
configured to update DNS when they assign addresses.
--
Barry Margolin, barmar at alum.mit.edu
Arlington, MA
*** PLEASE post questions in newsgroups, not directly to me ***
*** PLEASE don't copy me on replies, I'll read them in the group ***
More information about the bind-users
mailing list