On 06/13/2013 05:33 AM, Phil Mayers wrote:
On 06/13/2013 06:31 AM, Ronald F. Guilmette wrote:
1) If everyone on the planet were to somehow magically and
immediately be
converted over to DNSSEC tomorrow, then would DNS amplification attacks
become a thing of the past, starting tomorrow?
On 8/17/2012 1:13 AM, Jeff Justice wrote:
I am trying to mask our DNS servers version output to a custom string, but it
doesn't seem to be working for me. In a nutshell, I have added this to my
options block of my named.conf:
version [DNS Server];
options {
version string;
On 2/8/2012 10:32 PM, Matt Doughty wrote:
I have spend the afternoon trying to figure this out. The response I
get back from their nameserver looks fine to me, and dig +trace works
fine, but a regular dig returns a servfail. I have looked at the code
for invalid response, but I don't quite
On 10/12/2011 3:01 PM, Kevin Darcy wrote:
On 10/12/2011 1:21 PM, Martin McCormick wrote:
Many years ago, various flavors of unix began distributing a
utility called host which did almost the same thing as nslookup.
Host is what I use most of the time, now, and I actually thought
that nslookup
On 9/30/2011 6:21 PM, Shawn Bakhtiar wrote:
We came to the conclusion that no matter how much we wanted it to not
be true, people find a way to do NXDOMAIN if they want to. The issue
is not ours to push, it's between the ISP and the customer ultimately,
and people will do it -- and more
On 6/18/2011 12:24 PM, Lyle Giese wrote:
On 06/18/11 09:30, Jorg W. wrote:
Greetings,
given my domain name is example.net, and my NS servers for
example.net are:
ns1.example.com
ns2.example.com
But, example.com itself's NS servers are the registrator's (for
example, godaddy's).
Under this
On 2/24/2011 1:19 AM, Matthew Seaman wrote:
On 24/02/2011 04:14, Noel Butler wrote:
You can pretty much remove the entire statement now, as all /8's are
issued as of about two weeks ago.
This works for me:
lucid-nonsense:~/src/namedb:% cat acl-ipv4-bogons.conf
// @(#) $Id:
surprises.
--
-___
David Miller
Tiggee LLC
dmil...@tiggee.com
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
--
-___
David Miller
Tiggee LLC
dmil...@tiggee.com
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Secondaries need to 'know' that this old sec is now a master as well.
DNS is kind of critical (unless your internet presence is not important), so
... Knowing nothing about you org... Would rec that you priortise fixing DNS
pretty highly.
--
-___
David Miller
All,
There has been quite a bit of FUD bouncing around the net regarding the
May 5th signing of the root zone and the sky falling (or at least
massive failures across the internet). I have been asked multiple times
about how I was going to prevent the internet from collapsing for my users.
I assume that you are asking about providing authoritative DNS for
example.com.
Should you deploy DNSSEC? Yes, if you want your query responses to be
validated by DNSSEC resolvers.
Does this have anything to do with the DNSSEC signing of the root
domain? No, not really. Unless your
12 matches
Mail list logo
