[Dnsmasq-discuss] [PATCH V2] check bogus-nxdomain even when ip is from --address
Simon Kelley
simon at thekelleys.org.uk
Thu Mar 19 22:45:48 GMT 2015
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 16/03/15 07:33, Chen Wei wrote:
> On Sun, Mar 15, 2015 at 09:11:58PM +0000, Simon Kelley wrote:
>> On 12/03/15 08:29, Chen Wei wrote:
>>> This patch is mainly for blocking malware domains.
>> Why use a fake address. It seems more sensible to have some
>> syntax we could re-use that syntax so that
>> address=/malware.com/# means "return NXDOMAIN for *.malware.com"
>
> It is cleaner indeed.
>
In fact, you can already get this effect with
- --server=/malware.com/
which say to always return NXDOMAIN for *.malware.com
- --address=/malware.com/
is an error, so the simplest way to fix this is to remove the error
code, so that to two become completely equivalent.
Cheers,
Simon.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iEYEARECAAYFAlULUZIACgkQKPyGmiibgrdwYgCgg+pZD5j/kfaNUSHQo7MVx+0d
CJ8AoKrRG9Gz3cD4ivfGGhxHwa+GjowV
=TaN2
-----END PGP SIGNATURE-----
More information about the Dnsmasq-discuss
mailing list