Re: Unapproved updates

From: Phil Brutsche (
Date: 11/16/01

Date: Fri, 16 Nov 2001 11:50:45 -0600 (CST)
From: Phil Brutsche <>
To: Fab Siciliano <>
Subject: Re: Unapproved updates
Message-ID: <>

A long time ago, in a galaxy far, far way, someone said...

> Hey everybody,
> I just recently started seeing all these unapproved updates hitting my
> dns server in /var/log/messages. Is this a security risk?


> Do I need to allow updates if it's a secondary dns server?


> If I don't allow updates, then there would be no point to direct users
> to it...right? Because it wouldn't be caching other hosts' info. Am I
> right on this or WAY OFF? Thanks,

In a way it's totally harmless: some misconfigured Win2k systems are
trying to update their information in DNS, which they (obviously) don't
have the access rights to do.

It is *damn* annoying, however.