Hello,
I need to disallow the listing of all hosts from a domain answered by bind9.10 dns.
Scenario:
nslookup
ls domian-name.something
Now you get listed all existing hosts.
Security warning from dns security tools:
"Open Zone Transfer Detected
That means we asked for the information in your entire DNS zone and your DNS server gave it to us. This is generally considered a security issue as it can reveal host names/sub-domains or other DNS records that you don't want disseminated to the public. It is often the first step taken by an attacker looking for ways to exploit your system."
How can i restrict/disallow this query?
Thank you!
Bookmarks