DNS Sinkhole in BIND

Ryan Novosielski novosirj at umdnj.edu
Thu Oct 27 14:13:39 UTC 2011


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 10/17/2011 02:19 PM, Phil Mayers wrote:
> On 10/17/2011 06:38 PM, babu dheen wrote:
>> YOu are obsolutely correct Chris.. I want to block/redirect all malware
>> domain request intiated by clients by setting up DNS SINKHOLE in Redhat
>> BIND server.
> 
> In older versions of bind, you needed to create a local zone per malware
> domain (or hostname). There's no special config - just a really big,
> long, list of zones. One problem - there can be hundreds or thousands,
> even tens of thousands of zones - and this makes bind slow to start, and
> use more RAM.

Do you know what version that arrived in? 9.8.0?

- -- 
- ---- _  _ _  _ ___  _  _  _
|Y#| |  | |\/| |  \ |\ |  | |Ryan Novosielski - Sr. Systems Programmer
|$&| |__| |  | |__/ | \| _| |novosirj at umdnj.edu - 973/972.0922 (2-0922)
\__/ Univ. of Med. and Dent.|IST/CST-Academic Svcs. - ADMC 450, Newark
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAk6pZxIACgkQmb+gadEcsb5JQgCgw2siUmnbwo1SApzvEHowYYmI
FowAn1z01FFh7f+qkLsYt+wq1kfFQTqO
=rSII
-----END PGP SIGNATURE-----
-------------- next part --------------
A non-text attachment was scrubbed...
Name: novosirj.vcf
Type: text/x-vcard
Size: 301 bytes
Desc: not available
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20111027/5a1b8926/attachment.vcf>


More information about the bind-users mailing list