FS#41808 - [bind] sets up outdated default auth-nxdomain option
Attached to Project:
Arch Linux
Opened by Patrick Goetz (pgoetz) - Wednesday, 03 September 2014, 17:13 GMT
Last edited by Sébastien Luttringer (seblu) - Friday, 26 September 2014, 22:47 GMT
Opened by Patrick Goetz (pgoetz) - Wednesday, 03 September 2014, 17:13 GMT
Last edited by Sébastien Luttringer (seblu) - Friday, 26 September 2014, 22:47 GMT
|
Details
Description: Prior to bind 9 it was customary to set the
option auth-nxdomain to yes to fool older nameservers into
believing that non-authoratative negative answers from cache
are actually authoratative. Beginning with bind 9
auth-nxdomain should be set to no by default.
See "DNS and Bind 5/e" by Cricket Liu & Paul Albitz, O'Reilly, 2006 for details. Package version: bind 9.10.0.P2-1 Steps to fix: In the file /etc/named.conf auth-nxdomain yes; ---> auth-nxdomain no; |
This task depends upon
Closed by Sébastien Luttringer (seblu)
Friday, 26 September 2014, 22:47 GMT
Reason for closing: Implemented
Additional comments about closing: bind-9.10.1-2
Friday, 26 September 2014, 22:47 GMT
Reason for closing: Implemented
Additional comments about closing: bind-9.10.1-2
Comment by
Sébastien Luttringer (seblu) -
Thursday, 25 September 2014, 22:27 GMT
Could you be more specific that, buy and then search in a book to
find why?