[Pdns-users] Feature request: disable-any-meta-query-type
Josh Sanders
facil77 at gmail.com
Fri Dec 18 17:49:56 UTC 2015
Hello,
I really like PowerDNS but
I would like to have a setting disable-any-meta-query-type=yes in pdns.conf
and answer
with HINFO "Any Queries are not allowed Sorry" or no answer at all.
More info: https://blog.cloudflare.com/deprecating-dns-any-meta-query-type/
The reason for this is security: people can easily learn the entire DNS
zone with one command.
An authoritative server should be allowed to refuse to answer it.
ANY queries are not widely used by any real world software.
We aware of only two programs that issue ANY queries:
Un-patched versions qmaild
Firefox version 36.0 to 36.0.1
Thanks
Josh
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.powerdns.com/pipermail/pdns-users/attachments/20151218/066f19e2/attachment.html>
More information about the Pdns-users
mailing list