Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]
Groups > comp.protocols.dns.bind > #15743
| From | Vadim Pavlov <pvm_job@mail.ru> |
|---|---|
| Newsgroups | comp.protocols.dns.bind |
| Subject | Re: DNS Queries Using API - BIND9 |
| Date | 2020-05-10 23:37 -0700 |
| Message-ID | <mailman.380.1589179031.942.bind-users@lists.isc.org> (permalink) |
| References | <CAPPXLT_n9tUgp568x3UK9=OYPmuWR7wmyBcEsmL9SX+3DuX3vQ@mail.gmail.com> <820168EC-C49E-414C-92EB-0A65EF614024@mail.ru> <712b75ba-7104-62f2-767e-ee6c3b1fa9b3@switch.ch> <7243AFD7-73C0-415D-B087-F7A27FA0006A@mail.ru> |
Good idea. It may work. I’m using Intra for 1.5 years (with my DNS) and actually didn’t try it likely my DoH “old” proxy probably doesn’t support it. With nginx it should be possible if these open source clients support it. For Win/Mac/Linux there should be some open source DoH clients (backup will be using it just in browsers). Vadim > On May 10, 2020, at 23:26, Daniel Stirnimann <daniel.stirnimann@switch.ch> wrote: > > > > On 11.05.20 08:18, Vadim Pavlov via bind-users wrote: >> The main issue that bind does’t provide an authentication method. So in >> any case you somehow should manage the access to the DNS server vice >> versa it will became open resolver and will be used for DDoS attacks. > > If you were to use DoH, you could use Basic Authentication. The DoH URL > you could configure on your client systems could be something like this: > > https://username:password@doh.example.com/dns-query > > > Daniel
Back to comp.protocols.dns.bind | Previous | Next | Find similar
Re: DNS Queries Using API - BIND9 Vadim Pavlov <pvm_job@mail.ru> - 2020-05-10 23:37 -0700
csiph-web