| 1 |
Hello, |
| 2 |
|
| 3 |
I'm reading up on how to secure DNS primary and secondary servers. |
| 4 |
I guess DNSSEC is pretty important. Any other areas I should read |
| 5 |
up on? It's been a few years since I admin'd a dns server.... |
| 6 |
|
| 7 |
|
| 8 |
Also, look for gentoo centric DNS primary solutions, I see |
| 9 |
no mention of hardened, up-mounted or read only partitions, |
| 10 |
etc etc. I wondering if anyone has some general suggestions |
| 11 |
on how to keep a gentoo dns primary only machine secure. |
| 12 |
|
| 13 |
The iptables suggests seem trite and old. I'll not |
| 14 |
be running anything but DNS primary on the machine. When it |
| 15 |
is up, I want to test it and see if it can be hacked, by me. |
| 16 |
So a listing of "how to hack-test" your DNS primary server |
| 17 |
of ideas would be keen too. |
| 18 |
|
| 19 |
|
| 20 |
I wonder why the gentoo wiki does not have such information, as |
| 21 |
I'm sure it is commonly needed? |
| 22 |
|
| 23 |
Any other thoughts, suggestions and ideas are most appreciated, |
| 24 |
as I have not kept current with all of the latest dns security |
| 25 |
issues. I cannot even find a listing of security issues, that |
| 26 |
are strictly centric to DNS primary server issues. |
| 27 |
|
| 28 |
|
| 29 |
James |
Archives