undefined | Better HN

0 pointsthrowaway20485y ago0 comments

The best way to protect against DNS rebinding attacks is at the DNS server level on your local network.

the private-address directive and setting cache-min-ttl to a value of higher than 10 minutes or so both do a lot to neuter dns rebinding attacks.

Other DNS Resolvers have similar settings.

0 comments

ju-st5y ago

The DNS resolver/server is still resolving 127.0.0.0/8 and ::1 with these settings.

Not if you tell it otherwise.

j / k navigate · click thread line to collapse

ju-st5y ago

The DNS resolver/server is still resolving 127.0.0.0/8 and ::1 with these settings.

Not if you tell it otherwise.

j / k navigate · click thread line to collapse