On Thu, 10 Mar 2005 13:37:07 CST, Paul Schmehl said: > 3) Rather than hiding hostnames (which is a trivial security gain anyway) > we should *move* hosts to private space unless their owners can provide a > compelling reason for needing an internet-resolveable address. And having done that, make sure they have PTR records visible in your private network. :) (The tough part is making sure that you *properly* deploy a split-view DNS so you don't leak references to 1918 addresses to the outside world...)
Attachment:
pgp00039.pgp
Description: PGP signature
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://www.secunia.com/