pidgin.im Misconfigured DNS

Mark Doliner mark at kingant.net
Fri Nov 8 01:49:33 EST 2013


rock.pidgin.im and ns1.reaperworld.com already restrict zone
transfers. imperial.pidgin.im does not. You can test with this
command:
> dig @imperial.pidgin.im pidgin.im axfr

I think we want to add allow-transfer { "none"; }; to each of the
zones in /etc/bind/zones.pidgin and /etc/bind/zones.vulture on
imperial.pidgin.im.

I'd be happy to do it but I'm apparently not listed in /etc/sudoers.
Can someone please add me? (Or add me to the wheel group, or however
we do it.)


More information about the security mailing list