TLD Survey:Risks

• Open Recursive/Caching Server, Conclusion

  • Split functions onto separate machines or IP addresses

    • Authoritative servers should be authoritative-only

      • Also disable “fetch-glue”
    • Recursive/caching servers should not be authoritative
  • Recursive/caching servers should only answer queries from “internal” sources

Previous slide

Next slide

Back to first slide

View graphic version