On Wed, Feb 11, 2009 at 01:21:35AM +0100,
Thomas Manson dev.mansontho...@gmail.com wrote
a message of 88 lines which said:
I believed I was on bind mailing list, a mailing list is where you
usually get some help... isn't it ?
You're right, it's a shame. Ask immediately for a refund, both
On Wed, Feb 11, 2009 at 01:35:31AM +0100,
Thomas Manson dev.mansontho...@gmail.com wrote
a message of 80 lines which said:
I'll temporray block the ip on my firewall
Very bad idea, since it is forged. You do exactly what the attacker
wanted you to do.
The proper thing to do is:
Well...
I'll temporray block the ip on my firewall
Very bad idea, since it is forged. You do exactly what the attacker
wanted you to do.
The proper thing to do is:
https://www.dns-oarc.net/oarc/articles/upward-referrals-considered-harmful
this is kind of response I expect : an answer of
An intelligently designed firewall rule that drops the incoming requests
isn't doing exactly what the attacker wants. It's the opposite. The
main effect of forged lookups is a response flood. And so it is also
intended to flood the victim with overwhelming amounts of DNS
responses. It, like any
I have downloaded libbind6.0b1
My question is;
the arpa/nameser.h file included does not include
type definitions for DNSKEY (or other dnssec rr types)
in the ns_type enum.
am I looking in the wrong place?
Thanks
--
Jack Tavares
___
bind-users
_sip._udp.as.host.com as1.host.com 0 1 5060
_sip._udp.as.host.com as2.host.com 0 0 5060
Since as1 has a higher weight, it will always be picked first by the
SRV aware client?
I want the devices to ALWAYS go to as1 and only go to as2 if as1
is not available.
Do the above lines
I've been aware of this problem since it first came up on this and nanog's
list, but I'm having some configuration issues trying to make the upward
referrel be refused. I'm running bind-9.6.0P1, but I'm still seeing the NS
queries being answered in the log:
11-Feb-2009 09:34:25.489 queries:
On Wed, 11 Feb 2009, Matthew Huff wrote:
I've been aware of this problem since it first came up on this and nanog's
list, but I'm having some configuration issues trying to make the upward
referrel be refused. I'm running bind-9.6.0P1, but I'm still seeing the NS
queries being answered in the
You certainly load the zone you don't own, but be aware the downside will be
every downstream domain or host under the two domains you load will be
blackholed.
In your examples:
1) Everything under time.windows.com will not be resolvable other than
time.windows.com. i.e.
On Feb 11 2009, Johnny wrote:
_sip._udp.as.host.com as1.host.com 0 1 5060
_sip._udp.as.host.com as2.host.com 0 0 5060
That's the wrong syntax. I'll assume you mean
_sip._udp.as.host.com. SRV 0 1 5060 as1.host.com.
_sip._udp.as.host.com. SRV 0 0 5060 as2.host.com.
Since as1
Thanks to David Forest, I realize now that the query IS being refused,
however nothing in the bind log shows the refusal. Is there anyway to see
that in the log?
Matthew Huff | One Manhattanville Rd
OTA Management LLC | Purchase, NY 10577
http://www.ox.com | Phone: 914-460-4039
aim:
On Feb 11, 2009, at 5:01 AM, Torsten Segner wrote:
When asking a resolver I get answers in random order as long as I
don't insert the above rrset-order option in the resolver config as
well.
Have I missed something or is this an intended behaviour of
resolving nameservers?
This is
Hello,
Is it possible to have more than one hosts assigned as SOA in a given zone file?
I have BIND 9.5 and two UNIX hosts as authoritative servers (host1.com and
host2.com) for the domain x.host.com
Currently I have host1 as master and host2 configured as slave for x.host.com.
In case if host1
On Wed, Feb 11, 2009 at 12:30:19PM -0800, Worrell, James J Mr CIV US DISA GS4T1
wrote:
Greeting!
I am trying to load bind patch 119783-10 on a Solaris 10 system running
DNS 9.35-p2 and ran into several problems. I suspect that the root
cause is due to the security posture that we have in
In article gmvbtc$b8...@sf1.isc.org,
Prabhat Rana prana9...@yahoo.com wrote:
Hello,
Is it possible to have more than one hosts assigned as SOA in a given zone
file?
I have BIND 9.5 and two UNIX hosts as authoritative servers (host1.com and
host2.com) for the domain x.host.com
Currently
15 matches
Mail list logo