|
Barry,
We have some dns servers that are not "listed" in
our dns records. They are recursive, for use by surgemail and
our customers. Can those be found by hackers and used by them. ; And
if so how would I secure them (MS DNS) from "dns thieves"?
For DNS, part of the problem with DNS servers out there
in La-La Land is that they recurse and do redirected lookups for queries
coming from off-site IP addresses. Here, we use a variety of tools, but
I like JHSoft's Simple DNS Plus software the best. It can easily be configured
to accept queries only from certain IP's (even internal-only IP's) and to
IGNORE all other requests. You can even turn off Telnet so that DNS
thieves "don't have a clue" and go elsewhere. It's called Theft of
Services.
|