>From a security perspective, I would seriously not even bother querying anybody's DNS servers but rather have BIND to become a full recursive DNS server using only the root hints provided by IANA.
Unless frontier is hijacking DNS (port 53) traffic, I'd strongly recommend using the method mentioned above. On Wed, Feb 20, 2013 at 10:16 PM, Todd And Margo Chester <[email protected]> wrote: > Hi All, > > I can not get frontier's DNS servers to resolve > releases.mozilla.org. So, in my /etc/named.conf > I commented out frontier's DNS servers and substituted > Google's (8.8.8.8) and Open DNS' (208.67.222.222). > > # forwarders { 216.67.192.3; 74.40.37.242; }; > # forwarders { 74.40.74.40; 74.40.74.41; }; > forwarders { 8.8.8.8; 208.67.222.222; }; > > Am I making a security mistake here? > > Many thanks, > -T
