This can be fixed in the BQ GUI. See this thread:
http://www.bqforum.org/viewtopic.php?t=95
"To disable recursion:
BQ GUI > Network Services > DNS > Advanced (Tab):
Uncheck "Cache Record Lookups" and save."
That worked for me.
Don
http://www.bqforum.org
http://www.bqwiki.org
----- Original Message -----
From: "User Ernie" <ernie (at mark) info.eis.net.au>
To: <coba-e (at mark) bluequartz.org>
Sent: Friday, May 05, 2006 4:16 AM
Subject: [coba-e:05038] Open DNS Servers
> When I run the dnsreport tool located at http://dnsreport.com on domains
> hosted on our BQ servers, I get the following error in the report:
>
> "ERROR: One or more of your nameservers reports that it is an open DNS
> server. This usually means that anyone in the world can query it for
> domains
> it is not authoritative for (it is possible that the DNS server advertises
> that it does recursive lookups when it does not, but that shouldn't
> happen).
> This can cause an excessive load on your DNS server. Also, it is strongly
> discouraged to have a DNS server be both authoritative for your domain and
> be recursive (even if it is not open), due to the potential for cache
> poisoning (with no recursion, there is no cache, and it is impossible to
> poison it). Also, the bad guys could use your DNS server as part of an
> attack, by forging their IP address. Problem record(s) are:"
>
>
> How can I fix this? Or should I just ignore the error?
>
> - Ernie.
>
>
>