From owner-freebsd-isp Fri May 1 13:52:15 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id NAA19765 for freebsd-isp-outgoing; Fri, 1 May 1998 13:52:15 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from rainey.blueneptune.com (root@rainey.blueneptune.com [209.133.45.253]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id NAA19753 for ; Fri, 1 May 1998 13:52:13 -0700 (PDT) (envelope-from michael@rainey.blueneptune.com) Received: (from michael@localhost) by rainey.blueneptune.com (8.8.8/8.8.7) id NAA25939; Fri, 1 May 1998 13:56:05 -0700 (PDT) (envelope-from michael) Message-Id: <199805012056.NAA25939@rainey.blueneptune.com> Subject: Re: Named disappeared To: freebsd-isp@FreeBSD.ORG Date: Fri, 1 May 1998 13:56:05 -0700 (PDT) Cc: mmoran@veronet.net, batie@agora.rdrop.com In-Reply-To: <19980501112652.32131@agora.rdrop.com> from "Alan Batie" at May 1, 98 11:26:52 am From: michael@blueneptune.com Reply-To: michael@blueneptune.com X-Mailer: ELM [version 2.4 PL24 ME8b] Content-Type: text Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org There was a CERT advisory on April 8th that dealt with vulnerabilities in the BIND (named) distribution. This included situations that could result in an outside individual causing named to crash. (Or worse yet, gain root access to your system.) The advisory is here: http://www.cert.org/advisories/CA-98.05.bind_problems.html If you are seeing crashes, it may very well be somebody trying to exploit these problems on your server. Anybody using BIND should read this advisory, and upgrade to either BIND 4.9.7 or BIND 8.1.2. All previous versions under FreeBSD are vulnerable to at least some portion of the reported problems. You can download either version from this page: http://www.isc.org/new-bind.html -- Michael Bryan michael@blueneptune.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message