Restricting zone transfers with IP addresses in BIND DNS Server

  2007-10-13 21:30:02
DNS server can be attacked using various techniques such as:
[a] DNS spoofing

[b] Cache poisoning

[c] Registration hijacking

One of the simplest ways to defend is limit zone transfers between nameservers by defining ACL. I see many admin allows BIND to transfer zones in bulk outside their network or organization. There is no need to do this. Remember you don't have to make an attacker's life easier. Restricting zone transfers with IP addresses in BIND DNS Server 
  PNG Image  PNG Image  PNG Image



This particular article has been collected via RSS syndication. We apologize if it's too brief.
If You wish to publish articles on LinuxStreet.net please contact us.




  Similar articles  
ImageHow To Install And Use The djbdns Name Server On Debian Etch
ImageBuck DNS Monoculture with BIND Alternatives (Part 2)
ImageBuck DNS Monoculture with BIND Alternatives
ImageTutorial: Buck DNS Monoculture with BIND Alternatives
ImageCreate Your Own Web Server With BIND And Apache On CentOS 5
ImageBIND vulnerability
ImageLinux: Improving kswapd
ImageInstalling An Ubuntu Hardy 8.04 LTS DNS Server With BIND
ImageCentOS 5.1 Server Setup: LAMP, Email, DNS, FTP, ISPConfig
ImageThe Perfect Setup - OpenSuSE 10.2

  Related tags  
Server   Zone   BIND   Organization   Network   Admin   Registration  

Leave a comment on this article


Captcha

  
Check this if the code you see is not readable and resubmit the form.
(Data you entered will be preserved)



  

Comments (0)





© 2006-2008 LinuxStreet | Valid CSS | Valid XHTML | Service | Privacy | Add to Favorites
Currently 10 visitor(s) online | Page generated in 0.2592s | SQL Queries: 5 | Powered by SharkCMS