1the zone-transfer server (ldapaxfr) works similar to djbdns axfrdns 2except that it pulls "zones" out of the ldap server. 3 4the zone-transfer server REQUIRES that the AXFR environment variable be 5set to: 6 a single dot 7or 8 a root of the attempted zone 9 10before allowing a zone transfer to occur. AXFR can be disabled (by not 11setting the AXFR environment variable, or setting it to an empty string) 12and ldapaxfr will still answer regular queries via TCP. 13 14this change is primarily to support APNIC (asia and australia) domains 15that insist on TCP service but the administrator does not want wide-open 16zone transfers... 17 18sample/axfr contains a default configuration for this. 19