Tuesday, February 21, 2006

disable recursion in Bind


I just noticed that my dns server was being used as a caching dns server for some random host.  In my log files, I was seeing ANY queries for x.h.ctrc.cc.  When I looked at the cache, this was for some encoded data.


Using the documentation on this page, I was able to fix this problem.  The way that I fixed this was to add the following to the options section:




// version statement for security to avoid
// hacking known weaknesses

version "get lost";


// optional - disables all transfers -
// slaves allowed in zone clauses

allow-transfer {"none";};


// optional - disable all recursive queries

allow-recursion {"none";};

recursion no;



Technorati Tags: , ,

3 comments:

  1. where I can change these parameters? which is the config file for this change?

    ReplyDelete
  2. This is in named.conf or any of the domain specific files

    ReplyDelete
  3. Yes, it was /etc/named.conf
    thank you

    ReplyDelete

Mastering Matter: Seamless Smart Home Integration with Network Segmentation

I’ve been intrigued by the idea of integrating devices with Matter for some time. My smart home setup includes a pair of SwitchBot Hubs, som...