No subject

-B, --bogus-nxdomain=<ipaddr>
    Transform replies which contain the IP address given into "No such domain" replies. This is intended to counteract a devious move made by Verisign in September 2003 when they started returning the address of an advertising web page in response to queries for unregistered names, instead of the correct NXDOMAIN response. This option tells dnsmasq to fake the correct response when it sees this behaviour. As at Sept 2003 the IP address being returned by Verisign is 64.94.110.11 


Example configuration blocking German ISPs Alice and Kabel Deutschland:

config 'dnsmasq'
    list 'bogusnxdomain' '66.150.2.179'
    list 'bogusnxdomain' '64.236.172.120'

Signed-Off-By: Mickey Knox <mickey at netfreaks.org>



--- modules/admin-full/luasrc/model/cbi/admin_services/dnsmasq.lua	(Revision 6217)
+++ modules/admin-full/luasrc/model/cbi/admin_services/dnsmasq.lua	(Arbeitskopie)
@@ -120,4 +120,7 @@
         translate("List of <abbr title=\"Domain Name System\">DNS</abbr> " ..
                 "servers to forward requests to")).optional = true
 
+s:option(DynamicList, "bogusnxdomain", translate("Bogus NXDOMAIN"),
+	translate("Transform replies which contain these IP addresses into " ..
+		"\"No such domain\" replies.")).optional = true
 return m