Date: Thu, 18 Sep 2003 11:45:08 -0700 From: Sean Chittenden <sean@chittenden.org> To: Ted Cabeen <secabeen@pobox.com> Cc: freebsd-isp@freebsd.org Subject: Re: Verisign fun. Message-ID: <20030918184508.GC79031@perrin.nxad.com> In-Reply-To: <87znh3o3p2.fsf@gray.impulse.net> References: <20030917081828.GC43577@mccaffrey.house.so14k.com> <87znh3o3p2.fsf@gray.impulse.net>
next in thread | previous in thread | raw e-mail | index | archive | help
> If you want to do something like this, here's the official ISC patch: > > http://www.isc.org/products/BIND/delegation-only.html And for those that don't know how to use the patch, add the following to your config once you recompile: zone "com" in { type delegation-only; }; zone "net" in { type delegation-only; }; zone "cc" in { type delegation-only; }; zone "cx" in { type delegation-only; }; zone "io" in { type delegation-only; }; zone "mp" in { type delegation-only; }; zone "nu" in { type delegation-only; }; zone "ph" in { type delegation-only; }; zone "td" in { type delegation-only; }; zone "tk" in { type delegation-only; }; zone "tv" in { type delegation-only; }; zone "ws" in { type delegation-only; }; And actually, if you're using the bind9 port, here's the patch suitable for inclusion in the dns/bind9 port: cd /usr/ports/dns/bind9 mkdir files fetch -o files/patch-delegation http://people.freebsd.org/~seanc/patches/patch-HEAD-ports::dns::bind9::patch-delegation And you can rebuild/upgrade from there. -sc -- Sean Chittenden
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030918184508.GC79031>