Date: Mon, 07 May 2001 18:58:51 +0200 From: Sheldon Hearn <sheldonh@uunet.co.za> To: "Crist Clark" <crist.clark@globalstar.com> Cc: anderson@centtech.com, Andrew Barros <abarros@tjhsst.edu>, "lists@mail.ru" <lists@mail.ru>, freebsd-security@freebsd.org Subject: Re: reverse or not Message-ID: <98864.989254731@axl.fw.uunet.co.za> In-Reply-To: Your message of "Mon, 07 May 2001 09:54:36 MST." <3AF6D34C.AE6A479F@globalstar.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 07 May 2001 09:54:36 MST, "Crist Clark" wrote: > > From a security perspective, I'm pretty sure that hosts should NEVER > > rely on any external source for resolution on the loopback network. > > So everyone MUST run a DNS server on localhost? That does not sound too > secure either. That's not what I'm suggesting. People were talking about /etc/hosts vs DNS. I'm saying that 1) DNS servers shouldn't answer questions about the loopback network. 2) Hosts should have hostnames for the loopback network hardwired into /etc/hosts. Ciao, Sheldon. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?98864.989254731>