Facebook
Twitter
G
Galactic Zero
Guest
Ok, yesterday I did a dnsreport.com check of my site, found that it is flagging my DNS as being open. so to correct that I added to my /etc/named.conf the following lines:
options {
directory "/var";
auth-nxdomain no;
pid-file "/var/run/named/named.pid";
recursion no;
allow-recursion { 127.0.0.1; xxx.xxx.xxx.xxx; xxx.xxx.xxx.xxx; xxx.xxx.xxx.xxx; xxx.xxx.xxx.xxx; xxx.xxx.xxx.xxx; xxx.xxx.xxx.xxx; };
Each xxx.xxx.xxx.xxx block represents an ip address on my server, the only ip's I didn't put in there were for the main server and the 2 nameservers on this box.
Do I need to add those IP's or?
Here are some of the errors I'm getting:
[root@gz etc]# yum update clamd
Gathering header information file(s) from server(s)
Server: Atomic Rocket Turtle - 3ES - Atomic PSA-Compatible RPMS
retrygrab() failed for:
http://3es.atomicrocketturtle.com/at...rs/header.info
Executing failover method
failover: out of servers to try
Error getting file http://3es.atomicrocketturtle.com/at...rs/header.info
[Errno 4] IOError: <urlopen error >
[root@gz etc]#
[root@gz etc]# freshclam
ClamAV update process started at Tue Jul 25 10:33:23 2006
ERROR: Can't query current.cvd.clamav.net
WARNING: Invalid DNS reply. Falling back to HTTP mode.
ERROR: Can't get information about db.local.clamav.net: No IP address
ERROR: No servers could be reached. Giving up
Trying again in 5 secs...
More information:
I added the IP's for the main box and the nameservers, dnsreport checked out fine, still have the errors above, removed those entries and all works fine, so I guess I need to find a way to close the open DNS and still allow the above to work.
options {
directory "/var";
auth-nxdomain no;
pid-file "/var/run/named/named.pid";
recursion no;
allow-recursion { 127.0.0.1; xxx.xxx.xxx.xxx; xxx.xxx.xxx.xxx; xxx.xxx.xxx.xxx; xxx.xxx.xxx.xxx; xxx.xxx.xxx.xxx; xxx.xxx.xxx.xxx; };
Each xxx.xxx.xxx.xxx block represents an ip address on my server, the only ip's I didn't put in there were for the main server and the 2 nameservers on this box.
Do I need to add those IP's or?
Here are some of the errors I'm getting:
[root@gz etc]# yum update clamd
Gathering header information file(s) from server(s)
Server: Atomic Rocket Turtle - 3ES - Atomic PSA-Compatible RPMS
retrygrab() failed for:
http://3es.atomicrocketturtle.com/at...rs/header.info
Executing failover method
failover: out of servers to try
Error getting file http://3es.atomicrocketturtle.com/at...rs/header.info
[Errno 4] IOError: <urlopen error >
[root@gz etc]#
[root@gz etc]# freshclam
ClamAV update process started at Tue Jul 25 10:33:23 2006
ERROR: Can't query current.cvd.clamav.net
WARNING: Invalid DNS reply. Falling back to HTTP mode.
ERROR: Can't get information about db.local.clamav.net: No IP address
ERROR: No servers could be reached. Giving up
Trying again in 5 secs...
More information:
I added the IP's for the main box and the nameservers, dnsreport checked out fine, still have the errors above, removed those entries and all works fine, so I guess I need to find a way to close the open DNS and still allow the above to work.
