Welcome to Sign in | Join | Help
in
Home Blog Forums

The Lazy Admin

DNS Tips # 17 - Secure DNS Cache Against Pollution

Sponsor

Securing the cache against pollution helps to prevent spoofed DNS records from polluting the cache. This is an important setting on external DNS servers and I even recommend it for internal DNS servers.

Securing your DNS servers from cache pollution is rather straight-forward. Open up Administrative Tools, and then click DNS to open the DNS Management MMC. Right-click on the DNS server and select Properties, then select the Advanced tab. Check the box next to Secure Cache Against Pollution.

 

That's all there is to it! Now Windows will still trust zone transfers from BIND servers so if you are using BIND you should upgrade to BIND 9 which automatically scrubs poisoned records.





Published Wednesday, July 26, 2006 5:55 AM by rodney.buike
Filed under:

Comments

No Comments
Anonymous comments are disabled

This Blog

Powered By

 

Syndication

Sponsors

  
Get a free 5GB e-mail account @isalazyadmin.com

Affiliates

Canadian IT Professionals

Canadian IT Managers

Certifications & Awards


All postings are provided "AS IS" with no warranties, and confer no rights.
Microsoft product screen shot(s) reprinted with permission from Microsoft Corporation.
Copyright TheLazyAdmin Inc. All Rights Reserved 2004-2008