On Nov 8, 3:06pm, Mike Culver wrote:
} Subject: Restricting URL's
} Think I hit on such a simple way to restrict URL's that we all looked right
} past it! Yes, I see all the "buts" associated with this approach, but after
} all it's free, simple, and will trip up the average attempt.
} I'm assuming that most users use DNS with name resolution, instead of IP
security through obscurity
} To deny resolution to sex.com, simply add an entry to named.boot for
} bogusns. This directive will tell your DNS that the name server for sex.com
} is bogus, and your DNS will never ask sex.com's DNS anything.
This won't work so well if the name server in question is ns.uu.net or
some other server that serves a lot of zones that you probably still
want to access.