From owner-cvs-all  Fri Jun 28 18:50:43 2002
Delivered-To: cvs-all@freebsd.org
Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id 0FA9037B400; Fri, 28 Jun 2002 18:50:31 -0700 (PDT)
Received: from mrout1.yahoo.com (mrout1.yahoo.com [216.145.54.171])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id 885BA43E0A; Fri, 28 Jun 2002 18:50:30 -0700 (PDT)
	(envelope-from DougB@FreeBSD.org)
Received: from zoot.corp.yahoo.com (zoot.corp.yahoo.com [216.145.52.89])
	by mrout1.yahoo.com (8.11.6/8.11.6/y.out) with ESMTP id g5T1oDA84216;
	Fri, 28 Jun 2002 18:50:13 -0700 (PDT)
Received: from localhost (dougb@localhost)
	by zoot.corp.yahoo.com (8.12.5/8.12.5/Submit) with ESMTP id g5T1oDmP067647;
	Fri, 28 Jun 2002 18:50:13 -0700 (PDT)
Date: Fri, 28 Jun 2002 18:50:13 -0700 (PDT)
From: Doug Barton <DougB@FreeBSD.org>
To: "M. Warner Losh" <imp@village.org>
Cc: rwatson@FreeBSD.org, <cvs-committers@FreeBSD.org>,
	<cvs-all@FreeBSD.org>
Subject: Re: cvs commit: ports/net/bind8 Makefile distinfo ports/net/bind8/files
 patch-aa
In-Reply-To: <20020628.194328.51639012.imp@village.org>
Message-ID: <20020628184837.A16738-100000@zoot.corp.yahoo.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-cvs-all@FreeBSD.ORG
Precedence: bulk
List-ID: <cvs-all.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20cvs-all>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20cvs-all>
X-Loop: FreeBSD.ORG

On Fri, 28 Jun 2002, M. Warner Losh wrote:

> In message: <20020628182743.I16738-100000@zoot.corp.yahoo.com>
>             Doug Barton <DougB@FreeBSD.org> writes:
> : Actually it's still debatable just how possible it is to exploit the
> : resolver bug at all, but that's another topic.
>
> I'm pretty sure it is exploitable.  Lots of folks that fix these
> things think that it is exploitable.  It is better to assume that it
> is exploitable and upgrade

Yes, I agree with everything you said.... please don't misunderstand.
That's one reason I upgraded the port today, just in case someone is
actually using libbind.a. My point was simply that there are a lot of
other good reasons to upgrade bind 8 installs to 8.3.3, besides whatever
protection it may or may not give against the libc resolver bug.

Sorry for the confusion,

Doug

-- 
   "We have known freedom's price. We have shown freedom's power.
      And in this great conflict, ...  we will see freedom's victory."
	- George W. Bush, President of the United States
          State of the Union, January 28, 2002

         Do YOU Yahoo!?



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message