DNS Queries Using API - BIND9
Blason R
blason16 at gmail.com
Mon May 11 07:09:31 UTC 2020
Nah those are regular users - And thinking to work on DoT Proxy and force
that through GPO for browsers.
On Mon, May 11, 2020 at 12:27 PM Vadim Pavlov <pvm_job at mail.ru> wrote:
> If your users has admins permissions you probably will not find any open
> source tool which support that. For restricted accounts on Win - create
> policies.
>
> BR,
> Vadim
>
> On May 10, 2020, at 23:52, Blason R <blason16 at gmail.com> wrote:
>
> Thats a nice starting point -
>
> https://www.nginx.com/blog/using-nginx-as-dot-doh-gateway/
>
> But still looking for any client utility so that users can not shutdown or
> can not suspend the service
>
> On Mon, May 11, 2020 at 12:18 PM Blason R <blason16 at gmail.com> wrote:
>
>> Hmm- Any docs on configuring DOH Proxy?
>>
>> On Mon, May 11, 2020 at 11:56 AM Daniel Stirnimann <
>> daniel.stirnimann at switch.ch> wrote:
>>
>>>
>>>
>>> On 11.05.20 08:18, Vadim Pavlov via bind-users wrote:
>>> > The main issue that bind does’t provide an authentication method. So in
>>> > any case you somehow should manage the access to the DNS server vice
>>> > versa it will became open resolver and will be used for DDoS attacks.
>>>
>>> If you were to use DoH, you could use Basic Authentication. The DoH URL
>>> you could configure on your client systems could be something like this:
>>>
>>> https://username:password@doh.example.com/dns-query
>>>
>>>
>>> Daniel
>>>
>>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20200511/2b73614b/attachment-0001.htm>
More information about the bind-users
mailing list