Full Disclosure mailing list archives
Re: Reverse dns
From: Valdis.Kletnieks () vt edu
Date: Thu, 10 Mar 2005 18:02:19 -0500
On Thu, 10 Mar 2005 13:37:07 CST, Paul Schmehl said:
3) Rather than hiding hostnames (which is a trivial security gain anyway) we should *move* hosts to private space unless their owners can provide a compelling reason for needing an internet-resolveable address.
And having done that, make sure they have PTR records visible in your private network. :) (The tough part is making sure that you *properly* deploy a split-view DNS so you don't leak references to 1918 addresses to the outside world...)
Attachment:
_bin
Description:
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://www.secunia.com/
Current thread:
- RE: Re: Reverse dns (whether you want it or not), (continued)
- RE: Re: Reverse dns (whether you want it or not) Edward Ray (Mar 11)
- Re: Reverse dns (whether you want it or not) Dave Korn (Mar 11)
- Re: Re: Reverse dns (whether you want it or not) Danny (Mar 11)
- Re: Reverse dns Valdis . Kletnieks (Mar 11)
- Re: Reverse dns Simon Biles (Mar 11)
- Re: Reverse dns Paul Schmehl (Mar 10)
- Re: Reverse dns Valdis . Kletnieks (Mar 11)
- RE: Reverse dns Paul Schmehl (Mar 10)