[H-GEN] problems with accessing mail at bigpond

Robert Brockway robert at timetraveller.org
Sat May 4 06:10:00 EDT 2002

[ Humbug *General* list - semi-serious discussions about Humbug and     ]
[ Unix-related topics. Posts from non-subscribed addresses will vanish. ]

On Sat, 4 May 2002, Greg Black wrote:

> Of these, the first two are correctly configured not to answer
> queries from just anywhere and so won't help you unless you are
> on the network(s) they answer for.  The latter two will answer
> random queries from anywhere about anything at this time (which
> is quite silly) and so they do in fact give correct answers for

Personally I don't have a problem with open dns servers (ie server which
will answer queries from any remote host). I see it as one last thing we
haven't had to tighten up on the net because someone found a way of
abusing the trust of others (all mail relays used to be open not so long
ago...).  I block AXFR from anywhere except slaves of course.

I certainly find having remote dns servers ready to answer queries useful
for diagnostics (there is always samspade I suppose).  I can only think of
a handful of dns servers that are not open (UQ being a notably example).

I'd be interested in any security issues relating directly to having
a dns server which will answer queries from any host.


-- Robert Brockway B.Sc. email: robert at timetraveller.org  ICQ: 104781119
   Linux counter project ID #16440 (http://counter.li.org)
   blake: up 114 days, 11:23,  4 users,  load average: 1.32, 1.10, 1.03
   "The earth is but one country and mankind its citizens" -Baha'u'llah

* This is list (humbug) general handled by majordomo at lists.humbug.org.au .
* Postings to this list are only accepted from subscribed addresses of
* lists 'general' or 'general-post'.  See http://www.humbug.org.au/

More information about the General mailing list