From owner-freebsd-security Thu Nov 18 8:16:30 1999 Delivered-To: freebsd-security@freebsd.org Received: from inbox.org (inbox.org [216.22.145.8]) by hub.freebsd.org (Postfix) with ESMTP id BC7CE15440 for ; Thu, 18 Nov 1999 08:16:20 -0800 (PST) (envelope-from bsd@a.servers.aozilla.com) Received: from localhost (bsd@localhost) by inbox.org (8.9.3/8.9.3) with SMTP id LAA01718; Thu, 18 Nov 1999 11:16:11 -0500 (EST) Date: Thu, 18 Nov 1999 11:16:11 -0500 (EST) From: "Mr. K." X-Sender: bsd@inbox.org To: Dag-Erling Smorgrav Cc: David G Andersen , freebsd-security@FreeBSD.ORG Subject: Re: localhost.org In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > You should have an entry for localhost in the inbox.org zone file: > > localhost IN A 127.0.0.1 > yep, I already had this but it was ignoring this. in fact, localhost.inbox.org would give me 127.0.0.1, localhost. would give me 127.0.0.1, but localhost would give me a.b.c.d. Turns out that one part domains automatically try the search first. > and you should consider setting your search path explicitly in > /etc/resolv.conf. This solved the problem. > Alternatively, put 'hosts' before 'bind' in /etc/host.conf and make > sure /etc/hosts contains an entry for localhost. You can use > /etc/hosts to override other stuff, too; e.g. make ad.doubleclick.net > point to a dummy httpd that returns 404 no matter what URL you > request. > This seems like a good idea in any case, as it will defeat a hacker who manages to comprimise your nameserver. At least for those listings included in /etc/hosts. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message