Adam Borowski wrote:
> Hi!
> When a client tries to resolve an .onion name, bind will leak such a request
> to the outside internet (a forwarder or a root server). This is forbidden
> by RFC7686 which demands that both caching and authoritative servers return
> NXDOMAIN without looking that up.
>
Source: bind9
Version: 1:9.9.5.dfsg-9
Severity: normal
Hi!
When a client tries to resolve an .onion name, bind will leak such a request
to the outside internet (a forwarder or a root server). This is forbidden
by RFC7686 which demands that both caching and authoritative servers return
NXDOMAIN wi
2 matches
Mail list logo