You have a local DNS server running but do not appear to have any recursion restrictions set. This is a security and performance risk and you should look at restricting recursive lookups to the local IP addresses only
i get this when i run test security on csf
and i have found this
http://www.webhostingtalk.com/showthread.php?t=615056
but i am not okey with just put this in and let that be so maby you fine people could help me and tell me what you have done to fix this problem
And also i have one other problem in csf
You should enable extended exim logging to enable easier tracking potential outgoing spam issues. Add:
log_selector = +arguments +subject +received_recipients
to /etc/exim.conf
i did and then it told me that i needed to exclute that from my file and if i do that then it says
Check exim weak SSL/TLS Ciphers (tls_require_ciphers)
is at warning state ?
but it is working as i write this so thats not an issue
i get this when i run test security on csf
and i have found this
http://www.webhostingtalk.com/showthread.php?t=615056
Code:
include "/etc/namedb/rndc.key";
controls {
inet 127.0.0.1 allow { localhost; } keys { "rndc-key"; };
};
acl "trusted" {
127.0.0.1;
};
options {
pid-file "/var/run/named/named.pid";
directory "/etc/namedb";
dump-file "/var/dump/named_dump.db";
statistics-file "/var/stats/named.stats";
version "BIND";
allow-recursion { trusted; };
allow-notify { trusted; };
allow-transfer { trusted; };
forwarders { 127.0.0.1; };
};
but i am not okey with just put this in and let that be so maby you fine people could help me and tell me what you have done to fix this problem
And also i have one other problem in csf
You should enable extended exim logging to enable easier tracking potential outgoing spam issues. Add:
log_selector = +arguments +subject +received_recipients
to /etc/exim.conf
i did and then it told me that i needed to exclute that from my file and if i do that then it says
Check exim weak SSL/TLS Ciphers (tls_require_ciphers)
is at warning state ?
but it is working as i write this so thats not an issue