Why not jus return some 'bogus' version ??? like this option allows: version "bad-ass-bind"; :) --Chris ####################################################### ## UUNET Technologies, Inc. ## ## Manager ## ## Customer Router Security Engineering Team ## ## (W)703-289-8479 (C)703-283-3734 ## ####################################################### On Tue, 30 Jan 2001, Stephen Stuart wrote:
While it's not exactly a problem, it does give away that you're running bind9 (I do like the new 'version' option where you can set the version.bind reply) even if you change the version to appear to be a bind8 server.
"allow-query" lets you control who can see that information:
zone "bind" chaos { allow-query { 127.0.0.1 ; xxx.xxx.xxx.xxx/len ; } ; type master; file "filename"; };
Stephen