[Dnsmasq-discuss] [PATCH V2] check bogus-nxdomain even when ip is from --address

Simon Kelley simon at thekelleys.org.uk
Thu Mar 19 22:45:48 GMT 2015


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 16/03/15 07:33, Chen Wei wrote:
> On Sun, Mar 15, 2015 at 09:11:58PM +0000, Simon Kelley wrote:
>> On 12/03/15 08:29, Chen Wei wrote:
>>> This patch is mainly for blocking malware domains.
>> Why use a fake address. It seems more sensible to have some
>> syntax we could re-use that syntax so that 
>> address=/malware.com/# means "return NXDOMAIN for *.malware.com"
> 
> It is cleaner indeed.
> 

In fact, you can already get this effect with

- --server=/malware.com/

which say to always return NXDOMAIN for *.malware.com


- --address=/malware.com/

is an error, so the simplest way to fix this is to remove the error
code, so that to two become completely equivalent.


Cheers,

Simon.


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iEYEARECAAYFAlULUZIACgkQKPyGmiibgrdwYgCgg+pZD5j/kfaNUSHQo7MVx+0d
CJ8AoKrRG9Gz3cD4ivfGGhxHwa+GjowV
=TaN2
-----END PGP SIGNATURE-----



More information about the Dnsmasq-discuss mailing list