localhoast A record?
casey at deccio.net
Fri Mar 21 13:03:55 UTC 2014
On Fri, Mar 21, 2014 at 8:50 AM, Mitchell Kuch <mitch at basejp.com> wrote:
> Hello -
> I've adopted a number of zones and most of them contain "localhost in
> a 127.0.0.1" records. I'm curious what current RFC standards state and
> what the community considers best practice. RFC1537 states that zones
> should contain a localhost record, but it seems that practice was
> obsoleted by RFC1912. Is anyone aware of negative consequences with
> leaving such records in place, perhaps a XSS vulnerability?
> I'm itching to remove the records but thought I'd check to see if
> there was a legacy use case.
I would take a look at the query logs for the zones in question. You might
be surprised at how many queries are being made by systems that are
applying a suffix from the search list because of the lack of of an entry
for localhost in the hosts file or the mishandling thereof.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the bind-users