hnetd: Now disable in dnsmasq both rebind_protection and boguspriv by default, so...

author Markus Stenberg <markus.stenberg@iki.fi>

Wed, 2 Sep 2015 09:35:37 +0000 (12:35 +0300)

committer Markus Stenberg <markus.stenberg@iki.fi>

Wed, 2 Sep 2015 09:35:37 +0000 (12:35 +0300)
author Markus Stenberg <markus.stenberg@iki.fi>
Wed, 2 Sep 2015 09:35:37 +0000 (12:35 +0300)
committer Markus Stenberg <markus.stenberg@iki.fi>
Wed, 2 Sep 2015 09:35:37 +0000 (12:35 +0300)
diff --git a/hnetd/files/hnetd.defaults b/hnetd/files/hnetd.defaults

index 8dc7871a3b4f58f20567e00e33cff58de13d46fc..f9ed705f46b5c3debebe40a82478437fcfbce6c3 100644 (file)
--- a/hnetd/files/hnetd.defaults
+++ b/hnetd/files/hnetd.defaults
@@ -1,7 +1,14 @@
  #!/bin/sh
  
+# Why we tune dnsmasq?
+# localservice=0 => other hnetd instances can query for local names
+# rebind_protection=0 => accept RFC1918 names from the other hnetd instances
+# boguspriv=0 => allow reverse resolution of RFC1918 w/o local hosts entries
+
  uci batch <<EOF
  set dhcp.odhcpd.maindhcp=1
  set dhcp.@dnsmasq[0].localservice=0
+set dhcp.@dnsmasq[0].rebind_protection=0
+set dhcp.@dnsmasq[0].boguspriv=0
  commit dhcp
  EOF
author	Markus Stenberg <markus.stenberg@iki.fi>
	Wed, 2 Sep 2015 09:35:37 +0000 (12:35 +0300)
committer	Markus Stenberg <markus.stenberg@iki.fi>
	Wed, 2 Sep 2015 09:35:37 +0000 (12:35 +0300)