[BlueOnyx:15026] Re: SSL change after updates?
Michael Aronoff
maronoff at gmail.com
Thu Mar 27 09:53:07 -05 2014
Eric Wrote:
> Bind can use wildcards.
Keep in mind that if you use wildcard the way you propose people could start
using unauthorized links to your sites.
Say you run company.com, someone could use a link like assholes.company.com
or crap.company.com and those links would work!
Wildcard DNS is to direct all traffic to a single IP address, which with NAT
can actually be many servers. But if no service is setup to accept that
wildcard then the traffic will still fail. I think it is much better to
setup a service as a single name and then add the other addresses you want
to resolve in the site settings under 'Web Server Aliases'. Perhaps that
field alone should accept a wildcard but not the site settings themselves.
Just my 2cents.
______________________________
M Aronoff Out
I'm a great believer in luck, and I find the harder I work the more I have
of it.
- Thomas Jefferson
More information about the Blueonyx
mailing list