still do... both 

        localhost.
        1.0.0.127.in-addr.arpa.
        ::1.ip6.arpa. #

# yeah yeah... shoot me

--bill




On Thu, Apr 03, 2008 at 10:48:45AM -0400, Edward Lewis wrote:
> At 12:19 +0200 4/3/08, Antoin Verschuren wrote:
> >Hi,
> >
> >I may have missed this, but I'd like to hear the lists opinion about
> >this article:
> >http://seclists.org/bugtraq/2008/Jan/0270.html
> >that states that localhost entries in zones should be discouraged.
> 
> My problem with that doc is it says "uh, don't operate DNS servers if 
> you make mistakes."  Well, I am referring to the problem of 
> "localhost A 127.0.0.1" not having the trailing (FQDN) dot which 
> opens the doors to problems.
> 
> Here are two rules to combat this:
> 
> 1) Okay, no one forget the dot, OK?
> 2) Unless. you. put. dots. after. every. word. for. a. week., you. 
> are. prevented. from. ever. typing. named. .
> 
> >I know that localhost entries were encouraged in RFC 1537 but that one
> >is obsolted by RFC 1912 which doesn't say anything anymore about
> >localhost entries, so no encouragement nor disencouragement.
> >I think that if localhost entries in zones should be discouraged, it
> >should come from the consensus of this WG.
> 
> OTOH, I have in the past been religious about including 
> localhost(dot) in both the forward and reverse zones of my servers. 
> But I don't go to church anymore.  I forget why I dropped the 
> practice, I mean putting in the localhost(dot), not the church thing, 
> but I know I wasn't happy with it.
> 
> Thinking, thinking, no, can't recall the reason now.  Maybe with time 
> and discussion I will.
> -- 
> -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
> Edward Lewis                                                +1-571-434-5468
> NeuStar
> 
> Never confuse activity with progress.  Activity pays more.
> _______________________________________________
> DNSOP mailing list
> DNSOP@ietf.org
> https://www.ietf.org/mailman/listinfo/dnsop
_______________________________________________
DNSOP mailing list
DNSOP@ietf.org
https://www.ietf.org/mailman/listinfo/dnsop

Reply via email to