Re: Unapproved updates

From: Phil Brutsche (pbrutsch@tux.creighton.edu)
Date: 11/16/01


Date: Fri, 16 Nov 2001 11:50:45 -0600 (CST)
From: Phil Brutsche <pbrutsch@tux.creighton.edu>
To: Fab Siciliano <fsiciliano@optiumcorp.com>
Subject: Re: Unapproved updates
Message-ID: <Pine.LNX.4.40.0111161149170.1534-100000@tux.creighton.edu>

A long time ago, in a galaxy far, far way, someone said...

> Hey everybody,
>
> I just recently started seeing all these unapproved updates hitting my
> dns server in /var/log/messages. Is this a security risk?

No.

> Do I need to allow updates if it's a secondary dns server?

No.

> If I don't allow updates, then there would be no point to direct users
> to it...right? Because it wouldn't be caching other hosts' info. Am I
> right on this or WAY OFF? Thanks,

In a way it's totally harmless: some misconfigured Win2k systems are
trying to update their information in DNS, which they (obviously) don't
have the access rights to do.

It is *damn* annoying, however.

-- 

Phil