[34179] in North American Network Operators' Group

home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: sorry to ruin several of your evenings...

daemon@ATHENA.MIT.EDU (Christopher L. Morrow)
Tue Jan 30 15:50:32 2001

Date: Tue, 30 Jan 2001 15:45:29 -0500 (EST)
From: "Christopher L. Morrow" <cmorrow@UU.NET>
To: Stephen Stuart <stuart@mfnx.net>
Cc: poptix@sleepybox.poptix.net, nanog@merit.edu
In-Reply-To: <200101302038.f0UKc1f60062@hi.tech.org>
Message-ID: <Pine.GSO.4.20.0101301544470.21575-100000@csserve0.corp.us.uu.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Errors-To: owner-nanog-outgoing@merit.edu


Why not jus return some 'bogus' version ??? like this option allows:

version "bad-ass-bind";

:)

--Chris

#######################################################
## UUNET Technologies, Inc.                          ##
## Manager                                           ##
## Customer Router Security Engineering Team         ##
## (W)703-289-8479 (C)703-283-3734                   ##
#######################################################

On Tue, 30 Jan 2001, Stephen Stuart wrote:

> 
> > While it's not exactly a problem, it does give away that you're running
> > bind9 (I do like the new 'version' option where you can set the
> > version.bind reply) even if you change the version to appear to be a bind8
> > server.
> 
> "allow-query" lets you control who can see that information:
> 
> zone "bind" chaos { 
>         allow-query {
>                 127.0.0.1 ;
>                 xxx.xxx.xxx.xxx/len ;
>         } ;
>         type master; 
>         file "filename"; 
> };
> 
> Stephen
> 

home	help	back	first	fref	pref	prev	next	nref	lref	last	post