Why not just make your users use your servers for forwarding DNS and block outbound DNS requests @ your router for anything but your servers. I mean, if you're going to go to the extreme & force your users to not have access to something they might like (for some unknown reason), might as well go way overboard.
william ----- Original Message ----- From: "Justin Shore" <[EMAIL PROTECTED]> To: "Christopher X. Candreva" <[EMAIL PROTECTED]> Cc: "Vadim Antonov" <[EMAIL PROTECTED]>; "Matt Larson" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Sent: Wednesday, September 17, 2003 12:12 PM Subject: Re: Change to .com/.net behavior > > On Mon, 15 Sep 2003, Christopher X. Candreva wrote: > > > > > On Mon, 15 Sep 2003, Vadim Antonov wrote: > > > > > I'm going to hack my BIND so it'll discard wildcard RRs in TLDs, as a > > > matter of reducing the flood of advertising junk reaching my desktop. > > > > Please share your hack ! > > I've implemented the official ISC Bind hack on every single one of my name > servers and am pushing it and the configuration changes out to my > customers as a *required* upgrade. > > Justin > >
