Disable Zone Transfers

[hci]

In bind how do I disable zone transfers? Also, how do I disable querying of the version number of named/bind?

I have heard both of these can be security issues.

Matt

 

[pkilam]

To disallow zone transfer to all servers, you will add the following into the options section of the /etc/named.conf

allow-transfer { none;};



To disallow someone to query the version of your bind, you will add the following into the options section of the /etc/named.conf


version "[null]";