On Fri, May 28, 2010 at 11:25 AM, Michelle Konzack < linux4miche...@tamay-dogan.net> wrote:
> > Currently I need to secure my bind9 since I had a massive attack on my > <dns1> which is the master. Also I have had more then 30 million queries > in less then one week and bind9 has eaten arround 2.4 GByte of memory... > > DNSSEC is for securing your namespace, not your server. With DNSSEC a validating resolver can prove the authenticity of an answer it receives, but that won't help with attacks targeting your name server. If you're looking to secure your server, you'll need to take other security measures with regards to server/firewall configuration. Regards, Casey
_______________________________________________ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
