Subject: Re: change named.conf to turn off recursion by default?
To: Steven M. Bellovin <firstname.lastname@example.org>
From: Carl Brewer <email@example.com>
Date: 03/06/2006 11:13:59
Steven M. Bellovin wrote:
> Given the increasing problem of DOS reflector attacks via the DNS -- see
> should we ship a named.conf that disables recursion? OpenBSD has
> shipped that way since at least 2004.
Running BIND requires that you have an idea of how to set it up. As
long as the change is clearly documented I can't see it being