Hello, I'm reading up on how to secure DNS primary and secondary servers. I guess DNSSEC is pretty important. Any other areas I should read up on? It's been a few years since I admin'd a dns server....
Also, look for gentoo centric DNS primary solutions, I see no mention of hardened, up-mounted or read only partitions, etc etc. I wondering if anyone has some general suggestions on how to keep a gentoo dns primary only machine secure. The iptables suggests seem trite and old. I'll not be running anything but DNS primary on the machine. When it is up, I want to test it and see if it can be hacked, by me. So a listing of "how to hack-test" your DNS primary server of ideas would be keen too. I wonder why the gentoo wiki does not have such information, as I'm sure it is commonly needed? Any other thoughts, suggestions and ideas are most appreciated, as I have not kept current with all of the latest dns security issues. I cannot even find a listing of security issues, that are strictly centric to DNS primary server issues. James
