[Dnsmasq-discuss] configurable stop-dns-rebind?
clemens fischer
ino-news at spotteswoode.dnsalias.org
Sat May 8 16:47:35 BST 2010
Hi,
I have one little nit with option "stop-dns-rebind": it breaks the
RBL's needed to defend against spam. If only it could be a sub-option
to the "server" option to select which servers are allowed to receive
answers in the 127/8 or some other range!
Maybe a new option is needed, because "server" requires the IP of the
nameserver. The configuration would need to allow something like:
rbl=<rbl-domain>/<allowed-range(s)>
This should signal dnsmasq that clients don't actually use IPs from the
<allowed-range(s)> for networking and should be returned even with
"stop-dns-rebind" set.
Simon, would you accept a patch to that effect or implement it yourself?
How should the possibly new option be named? "rbl" sounds a bit too
specific for a general concept like this.
clemens
More information about the Dnsmasq-discuss
mailing list