Should a DNS server restrict reverse lookups from external hosts?

What risks are there in allowing external clients to resolve internal IPs to their domain names? The server is used internally for clients, as well as for external clients needing to resolve a web server’s domain. Couldn’t allowing these reverse lookups allow an attacker to gather a wide array of information if the domain names contain usable information?

How to completely restrict a postgres role to a single schema

I’d like to create a readonly role for a third party to access a handful of tables from the public schema without being able to view the rest of the tables in public.

My initial idea was to create a new schema ‘readonly’ and then create views in that schema:

create view readonly.table1 as select * from public.table1 

Then alter the search path for the readonly user to limit it only to the ‘readonly’ schema. However, it looks like I can still view the public schema as that role (though I can’t select anything from any tables in schema public).

Is there a way to remove all visibility into the public schema from a role? Unfortunately, moving everything to a different schema is not possible.

Can you restrict the services a certificate can access on the client side?

I have a verification certificate signed by my organisation’s CA, which I can use to authenticate my user account on intranet web services.

Is there someway I can sign a new certificate which can only authenticate to one specific web service. Or some other way to enable limited access to one web service by a script I don’t want to give full access to my verification certificate.

Unfortunately I don’t have access to modify the web service, which is running nginx.

PCI DSS 1.2.1 Restrict inbound and outbound traffic to that which is necessary for the cardholder data environment

A strict interpretation of that rule would seem to prohibit web browsing by PCs on the same LAN as a card processing PC. However, it appears that rule is interpreted in practice as though it says “Restrict inbound and outbound traffic to that which is necessary for the business environment.” Can anyone provide confirmation or clarification?

How can I restrict visibility to my SMB server to public (internet)? [on hold]

I have a SMB server running on pi4 behind an ADSL router from my ISP.

Although there is only 1 ssh port-forwarding rule to my pi4 server, the SMB server is visible to the internet! So, I don’t have DMZ enabled on my ISP ADSL router and there is only 1 port forward rule – to access ssh on my pi4.

Is there any way to restrict SMB server visibility to the public internet from smb.conf or other methods? I searched all over the internet and found nothing.

How to restrict the use of variables to the notebook?

I am solving two problems simultaneously in which the variable x is defined. To the left of the image, i’m solving shape functions and matrix operations. But to the right i’m solving Green’s function.

Notice the ‘x’ variable values are being used from left notebook to the right notebook which yields wrong solution.

But even when I open a new notebook the variable is carried over and being used.To the left I'm doing shape function calculations, To the right I'm evaluating the Green's function

To this i’ve tried doing this

Format -> Option Inspector -> Cell Options -> Evaluation Options

There I changed “CellContext” from “Global” to “Notebook”. But It is still using it as global variable.

How do I restrict the usage such that when I define a variable it is used within that notebook only?

In Roll20, how do you restrict PC’s vision in situations like fog?

For situations like Obscuring Mist and other vision impairment that overcomes Darkvision (and similar abilities), how have you successfully enforced that in Roll20?

My PC’s would probably meta-game if they’re simply told “you can’t see in this area” and it kind of nullifies a major encounter coming up (and would be good to know for the future).

Assume Plus membership to the website (access to Advanced/Fog of War and Dynamic Lighting but not API.

Measurements of success:

  • Players are able to manipulate their token on a battle grid to explore the area of restricted sight
  • The GM can interrupt players when their sensory information changes without significantly interrupting play each round
    • Ideally, you would also avoid constantly moving them back
  • You have some method of providing information to players about what their character perceives
    • Ideally, only the player that “should” have the exact knowledge would have it, and others only what they can convey

Good answer(s) will follow the concept of Good Subjective and cover key ponts

  • What has been your experience using the system?
    • IE player feedback, how you felt it worked
  • How you were able to restrict sight and also reveal information
    • Did you just tell the one player? Did everybody get to know when Bob was next to the bad guy?

Related for physical TT

For physical games, how do you restrict PC’s vision in situations like fog?

For situations like Obscuring Mist, darkness, and other vision impairment, how have you successfully enforced that?

Measurements of success:

  • Players are able to manipulate their character on a battle grid to explore the area of restricted sight
  • The GM can interrupt players when their sensory information changes without significantly interrupting play each round
    • Ideally, you would also avoid constantly moving them back
  • You have some method of providing information to players about what their character perceives
    • Ideally, only the player that “should” have the exact knowledge would have it, and others only what they can convey

Good answer(s) will follow the concept of Good Subjective and cover key ponts

  • What has been your experience using the system?
    • IE player feedback, how you felt it worked
  • How you were able to restrict sight and also reveal information
    • Did you just tell the one player? Did everybody get to know when Bob was next to the bad guy?

Related for Roll20 Virtual TT

PhpBB forum ext needed, to restrict posts per user, per day, per subforum

Hello!

As things are today, there is no extension available for something I would seek for a phpBB forum, so I'm asking here to the Digitalpoint coders.

*

More details about the phpBB extension:

– it has to limit the number of posts (new threads and and replies inside a thread, both are added to the count, AKA both count) that a username is allowed to post, in each subforum, every day.

Out of my ass example: if the limit is set to 5, and the admin decides it applies to the "Casual…

PhpBB forum ext needed, to restrict posts per user, per day, per subforum

How to restrict SharePoint permissions for below senerio?

We have a SharePoint integration with CRM.

CRM creates document libraries, folders and document from its system. Back-end is SharePoint.

From CRM system, users cannot access the files created by other users, but how ever users started accessing back end SharePoint site directly to access the files and folders created by other users.

In SharePoint the permissions are inherited from parent site, breaking inheritance is one option but that option could be very tedious as maintain permissions for 300 folders could be difficult.

Is there anyway we can restrict users from access the SharePoint site directly? Or is there any better solution for the above scenario?