]> git.ipfire.org Git - thirdparty/bind9.git/commit
projects / thirdparty / bind9.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9cd1485) | patch
2006. [security] Allow-query-cache and allow-recursion now default
authorMark Andrews <marka@isc.org>
Thu, 9 Mar 2006 03:30:18 +0000 (03:30 +0000)
committerMark Andrews <marka@isc.org>
Thu, 9 Mar 2006 03:30:18 +0000 (03:30 +0000)
commitfe6f384b2efde528dabbf822634eedc020be67e0
tree2368ad2203a62b5e0792a542a72b0fef6ba1e919tree | snapshot
parent9cd148558bfff691175a58245e10aede0f550442commit | diff
2006.   [security]      Allow-query-cache and allow-recursion now default
                        to the builtin acls "localnets" and "localhost".

                        This is being done to make caching servers less
                        attractive as reflective amplifying targets for
                        spoofed traffic.  This still leave authoritative
                        servers exposed.

                        The best fix is for full BCP 38 deployment to
                        remove spoofed traffic.
CHANGES diff | blob | blame | history
bin/named/config.c diff | blob | blame | history
bin/named/server.c diff | blob | blame | history
doc/arm/Bv9ARM-book.xml diff | blob | blame | history
Mirror of https://gitlab.isc.org/isc-projects/bind9.git