Date: Thu, 17 Jul 2008 00:20:42 +0800 From: Eugene Grosbein <eugen@kuzbass.ru> To: stable@freebsd.org Subject: named.conf: query-source address Message-ID: <20080716162042.GA27666@svzserv.kemerovo.su>
next in thread | raw e-mail | index | archive | help
Hi! I fully understand and second efforts on educating people how to configure BIND to be stong to attacks and keep them from using "query-source address" with "port" option but how about binding named to particular IP address when host has many of them? Using "query-source address" without "port" is the only solution (not speaking of jails here) and safe one? Wouldn't all that hustle about query-source misinform users about utility of it? Eugene Grosbein
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20080716162042.GA27666>