On Tue, Jan 14, 2025 at 9:06 AM Petr Špaček wrote:
>
> On 14. 01. 25 12:56, Robert Wagner wrote:
> > I wanted to better understand the use-case of having a DNS server
> > provide localhost lookup.
>
> TL;DR Mistakes are being made.
>
> It does not serve 'legitimate' purpose by itself, it just lowers cost of
> leaked nonsense queries.
>
> I guess it applies to most (all?) special-use names: The local
> authoritative zone is to defined to cut down the nonsense traffic which
> is leaking to the network. In the ideal world none of this would be
> necessary.
Two questions:
Should bind answer when asked for an A record for random.name.localhost?
If so, does the ISC ship a db.local with a wildcard - eg.
--- cut here ---
@ IN NS localhost.
@ IN A 127.0.0.1
@ IN AAAA ::1
* IN A 127.0.0.1
IN AAAA ::1
--- cut here ---
to answer for any .localhost name?
In other words, should I submit a bug report to the Debian bind
maintainers or ISC?
Thanks
Lee
>
> Hope it helps.
>
> --
> Petr Špaček
> Internet Systems Consortium
> --
> Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
> this list
>
> ISC funds the development of this software with paid support subscriptions.
> Contact us at https://www.isc.org/contact/ for more information.
>
>
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
--
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list
ISC funds the development of this software with paid support subscriptions.
Contact us at https://www.isc.org/contact/ for more information.
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
