[114944] in North American Network Operators' Group
Re: In a bit of bind...
daemon@ATHENA.MIT.EDU (Chris Meidinger)
Mon Jun 1 07:28:39 2009
From: Chris Meidinger <cmeidinger@sendmail.com>
To: Ben Matthew <Ben.Matthew@timlradio.co.uk>
In-Reply-To: <D8FB18B62112B14389B95B0CB4381FA30F02F2EB@LDNEXCH01.timlradio.local>
Date: Mon, 1 Jun 2009 13:27:45 +0200
Cc: "nanog@nanog.org" <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On 01.06.2009, at 12:59, Ben Matthew wrote:
> Finally I've managed to successfully configure BIND 9 as a slave to
> a myDNS server and the AXFR transfers seem to be working fine. This
> strikes me as being quite a nice balance of ease of use and
> reliability in case myDNS fails on me. Ok I appreciate it doesn't
> get around security concerns but hey ho.
As far as as security, why have myDNS world-reachable at all? You can
have bind feed off of myDNS without having anyone on the outside ever
talk to the myDNS backend.
Chris
