From owner-freebsd-security  Thu Nov 18 15: 1:30 1999
Delivered-To: freebsd-security@freebsd.org
Received: from gndrsh.dnsmgr.net (GndRsh.dnsmgr.net [198.145.92.4])
	by hub.freebsd.org (Postfix) with ESMTP id E02CE154F0
	for <security@FreeBSD.ORG>; Thu, 18 Nov 1999 15:01:23 -0800 (PST)
	(envelope-from freebsd@gndrsh.dnsmgr.net)
Received: (from freebsd@localhost)
	by gndrsh.dnsmgr.net (8.9.3/8.9.3) id PAA26480;
	Thu, 18 Nov 1999 15:00:57 -0800 (PST)
	(envelope-from freebsd)
From: "Rodney W. Grimes" <freebsd@gndrsh.dnsmgr.net>
Message-Id: <199911182300.PAA26480@gndrsh.dnsmgr.net>
Subject: Re: [Systalk] localhost.org (fwd)
In-Reply-To: <44745.942963148@verdi.nethelp.no> from "sthaug@nethelp.no" at "Nov 18, 1999 11:12:28 pm"
To: sthaug@nethelp.no
Date: Thu, 18 Nov 1999 15:00:57 -0800 (PST)
Cc: security@FreeBSD.ORG
X-Mailer: ELM [version 2.4ME+ PL54 (25)]
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

> > Another best practive often not done correctly is the reverse zome for
> > 127.in-addr.arpa.  Yes, thats right, I said 127.in-addr.arpa, not
> > 0.0.127.in-addr.arpa.  And that is where the error is made, even in the
> > bind documentation and in what FreeBSD distributes.  Here is a proper
> > zone file:
> 
> I see no reason why this is any more correct than the "traditional"
> 
> $origin 0.0.127.in-addr.arpa.
> 1	PTR	localhost.
> 
> Maybe you'd like to convince us?


There is nothing wrong with that, but have you looked at:
br1.CN85rd.molalla.net:root{120}# pwd
/usr/src/etc/namedb

named.conf:
zone "0.0.127.IN-ADDR.ARPA" {
        type master;
        file "localhost.rev";
};

and PROTO.localhost.rev:
@       IN      SOA     @host@. root.@host@.  (
                                @date@  ; Serial
                                3600    ; Refresh
                                900     ; Retry
                                3600000 ; Expire
                                3600 )  ; Minimum
        IN      NS      @host@.
1       IN      PTR     localhost.@domain@.
br1.CN85rd.molalla.net:root{125}# 


Now do you see what is wrong????

-- 
Rod Grimes - KD7CAX @ CN85sl - (RWG25)               rgrimes@gndrsh.dnsmgr.net


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message