Full Disclosure mailing list archives

Re: Reverse dns

From: Valdis.Kletnieks () vt edu
Date: Thu, 10 Mar 2005 18:02:19 -0500

On Thu, 10 Mar 2005 13:37:07 CST, Paul Schmehl said:

3) Rather than hiding hostnames (which is a trivial security gain anyway) 
we should *move* hosts to private space unless their owners can provide a 
compelling reason for needing an internet-resolveable address.


And having done that, make sure they have PTR records visible in your private
network. :)

(The tough part is making sure that you *properly* deploy a split-view DNS so
you don't leak references to 1918 addresses to the outside world...)

Attachment: _bin
Description:

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://www.secunia.com/

Current thread:

RE: Re: Reverse dns (whether you want it or not), (continued)
- - - RE: Re: Reverse dns (whether you want it or not) Edward Ray (Mar 11)
    - Re: Reverse dns (whether you want it or not) Dave Korn (Mar 11)
    - Re: Re: Reverse dns (whether you want it or not) Danny (Mar 11)
    - Re: Reverse dns Valdis . Kletnieks (Mar 11)
    - Re: Reverse dns Simon Biles (Mar 11)
- Re: Reverse dns Danny (Mar 10)
- RE: Reverse dns Edward Ray (Mar 10)
- Re: Reverse dns Andrei Zlate-Podani (Mar 10)
- Re: Reverse dns Valdis . Kletnieks (Mar 10)
  - Re: Reverse dns Paul Schmehl (Mar 10)
    - Re: Reverse dns Valdis . Kletnieks (Mar 11)
- Re: Reverse dns Security - AlaricoWebDesign.it (Mar 10)
- Re: Reverse dns Pete Hickey (Mar 10)
- Re: Reverse dns Ben McGinnes (Mar 11)
- RE: Reverse dns Mike Ring (Mar 10)
- RE: Reverse dns Dale Babiy (Mar 10)
  - RE: Reverse dns Paul Schmehl (Mar 10)
- Re: Reverse dns derek (Mar 10)
- RE: Reverse dns Andriy Bilous (Mar 11)