Re: using acls in also-notify doesn't work -- alternative?
This is a discussion on Re: using acls in also-notify doesn't work -- alternative? within the Bind Users forums, part of the DNS and Related Forums category; On Fri, Nov 05, 2004 at 08:19:31PM -0500, Barry Margolin wrote: > No, it's disallowed because it'...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
11-06-2004
|
|||
|
|||
Re: using acls in also-notify doesn't work -- alternative?
On Fri, Nov 05, 2004 at 08:19:31PM -0500, Barry Margolin wrote:
> No, it's disallowed because it's conceptually wrong. An ACL is an > Access Control List, not an Address List, so it's only appropriate to > use it in places where it's used as a filter. In some special cases it > may contain a list of specific addresses, but that's not the general > expectation, and it's not intended to be used for such purposes. Fair enough. > The right solution is for BIND to provide named address lists, to be > used in places like also-notify and masters. Since address lists are a > subtype of access control lists, it would be reasonable to allow them to > be used where ACLs are expected, but not the other way around. Agred. =) -- Phil Dibowitz Systems Architect and Administrator Enterprise Infrastructure / ISD / USC UCC 174 - 213-821-5427 -- Attached file included as plaintext by Ecartis -- -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (GNU/Linux) iD8DBQFBjCkq7lkZ1Iyv898RAkclAJwPSoq7KU3/UqvWNnUHJy441iH98QCglM3m +eNj41Rz+1Zulysw0lAQz14= =HMtY -----END PGP SIGNATURE----- 
|
Linear Mode
