diff --git a/roles/bind-authoritative/templates/bind/named.conf.options.j2 b/roles/bind-authoritative/templates/bind/named.conf.options.j2
index 1b0c09ac..8ebc5935 100644
--- a/roles/bind-authoritative/templates/bind/named.conf.options.j2
+++ b/roles/bind-authoritative/templates/bind/named.conf.options.j2
@@ -23,4 +23,13 @@ options {
 	dnssec-validation auto;
 
 	listen-on-v6 { any; };
+
+	// Disable recursion on authoritative DNS server
+	recursion no;
+
+	// Disallow zone transfert by default
+	allow-transfer { none; };
+
+	// Hide version from clients
+	version "not currently available";
 };