Package: pdns-server Version: 2.9.20-8 Severity: important Tags: upstream Setting allow-axfr=yes turns on AXFR. Unfortunately, it enables AXFR from all IPs, even if allow-axfr-ips is set to only a few IPs. This is misleading in my opinion, and potentially a security hazard.
I suggest that allow-axfr=no turned off all AXFR, allow-axfr=yes turns it all on, but if allow-axfr-ips is set, only those IPs can transfer. -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.24-1-amd64 (SMP w/1 CPU core) Locale: LANG=en_GB, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- .''`. martin f. krafft <[EMAIL PROTECTED]> : :' : proud Debian developer, author, administrator, and user `. `'` http://people.debian.org/~madduck - http://debiansystem.info `- Debian - when you have better things to do than fixing systems
digital_signature_gpg.asc
Description: Digital signature (see http://martin-krafft.net/gpg/)
