Educause Security Discussion mailing list archives

Best practice for reverse DNS records

From: "Lisciotti, Kevin" <klisciotti () UMASSP EDU>
Date: Mon, 13 Jan 2014 16:22:19 -0500

Hi everyone,

I was curious as to what others do in regards to creating external PTR records. I personally believe in just adding PTR 
records for hosts that require them, such as a mail server/exchanger. For security reasons, I would think that having 
all of your hostnames and FQDN's tied to your external ip addresses would make it easy for attackers to target specific 
systems; while creating a nice little profile on the organization.

Would you concur, or do you think this is a non-issue? How do you handle PTR records?

Thanks,

:: Kevin Lisciotti, Senior Systems Specialist, RHCE, RHCSA
:: University Information Technology Services (UITS)
:: University of Massachusetts President's Office

:: 774-455-7761 Office
:: 774-455-7733 Fax
:: klisciotti () umassp edu<mailto:klisciotti () umassp edu>

University of Massachusetts : 333 South St. : Suite 400 : Shrewsbury, MA 01545 : 
www.massachusetts.edu<http://www.massachusetts.edu/>

Current thread:

Best practice for reverse DNS records Lisciotti, Kevin (Jan 13)
- Re: Best practice for reverse DNS records Ken Connelly (Jan 13)
- Re: Best practice for reverse DNS records Julian Y Koh (Jan 13)
- Re: Best practice for reverse DNS records Richard H Gadsden (Jan 14)
  - Re: Best practice for reverse DNS records Valdis Kletnieks (Jan 14)
  - Message not available
    - Re: Best practice for reverse DNS records Lisciotti, Kevin (Jan 14)