[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-developers] publishing slave nameservers was RE: Denial-of-Service Vulnerabilityin ISC BIND 9

Subject: RE: [cobalt-developers] publishing slave nameservers was RE: Denial-of-Service Vulnerabilityin ISC BIND 9
From: "Matthew Nuzum" <newz@xxxxxxxxxxxxx>
Date: Thu Jun 6 08:41:01 2002
List-id: Discussion Forum for developers on Sun Cobalt Networks products <cobalt-developers.list.cobalt.com>

> It means that YOUR primary and secondary nameservers will always
answer
> authoritatively for their own domains, but will only answer
> authoritatively for domains it looks up recursively if those domains
are
> NOT already in it's cache.
...
> 
> How were you telling the slaves they were authoritative, and how were
> you transferring zone-files to them?
> 
...
> Jeff

Ah... subtle but important.  I was not transferring the zone files.
Since the slaves could answer for the masters it appeared that all was
working fine.

I guess it's surprising that it worked at all.  But as far as we could
tell, most of the ISPs worked fine.

Matthew Nuzum
www.bearfruit.org
cobalt@xxxxxxxxxxxxx

References:
- Re: [cobalt-developers] publishing slave nameservers was RE: Denial-of-Service Vulnerabilityin ISC BIND 9
  - From: Jeff Lasman

Prev by Date: Re: [cobalt-developers] publishing slave nameservers was RE: Denial-of-Service Vulnerabilityin ISC BIND 9
Next by Date: Re: [cobalt-developers] Majordomo & capacity
Previous by thread: Re: [cobalt-developers] publishing slave nameservers was RE: Denial-of-Service Vulnerabilityin ISC BIND 9
Next by thread: Re: More Re: [cobalt-developers] Fwd: CERT Advisory CA-2002-15 Denial-of-Service Vulnerabilityin ISC BIND 9

Sun Cobalt Developers Message Index

Sun Cobalt Developers Thread Index