Is it possible to filter (.)wpad. with RPZ?

Grant Taylor via bind-users Wed, 29 Nov 2017 10:14:13 -0800

Is it possible to filter (*.)wpad.* with RPZ? Or do I need to look into Response Policy Service and try to filter that way?

I've used RPZ for various different things over the years, but I don't quite know how to match a wild card on the right hand side.

Context: I'd like to prevent ""misconfigurations like the following and I was hoping that RPZ could be utilized:


Link - Anybody else having issues with wpad.domain.name?

- https://www.reddit.com/r/networking/comments/732r5n/anybody_else_having_issues_with_wpaddomainname/


Link - Alert (TA16-144A) WPAD Name Collision Vulnerability
 - https://www.us-cert.gov/ncas/alerts/TA16-144A



--
Grant. . . .
unix || die

smime.p7s
Description: S/MIME Cryptographic Signature

_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Is it possible to filter (*.)wpad.* with RPZ?

Reply via email to

Is it possible to filter (.)wpad. with RPZ?