[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] "unapproved update from [212.161.41.140]" error

Subject: Re: [cobalt-users] "unapproved update from [212.161.41.140]" error
From: Jeff Bilicki <jeff@xxxxxxxxxxx>
Date: Tue Feb 6 14:44:55 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

> i've received this error a bazillion times over the last weeks:
> # tail /var/log/messages
> Feb  6 22:04:39 www named[356]: unapproved update from [212.161.41.140].8200
> for domain.com
> Feb  6 22:09:31 www named[356]: unapproved update from [212.161.41.140].8226
> for domain.com
> Feb  6 22:09:32 www named[356]: unapproved update from [212.161.41.140].8227
> for domain.com
> some research indicates that it might be a windows 2000 machine,
> apparently if someone names their machine the same name as your
> domain, w2k attempts to update your domain's nameserver??
> anyway, i tried to bar access using hosts.deny but it fails to
> make a difference.

This is coming from your DNS server.  Are you acting as a secondary DNS for any
domains?  Adding those entries into /etc/hosts.deny will not affect this
request. 

Try turning debugging for named, as root:
$ ndc
ndc> querylog
# if you want _really_ verbose type:
ndc> trace 1
ndc> Ctrl-C 
$ tail -f /var/log/message

Wait for it to happen again.

Follow-Ups:
- Re: [cobalt-users] "unapproved update from [212.161.41.140]" error
  - From: fastmedia

Prev by Date: [cobalt-users] phpMyAdmin
Next by Date: RE: [cobalt-users] Webalizer with FrontPage - Need a package
Previous by thread: Re: [cobalt-users] "unapproved update from [212.161.41.140]" error
Next by thread: Re: [cobalt-users] "unapproved update from [212.161.41.140]" error

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index