Date: Thu, 11 Nov 1999 14:33:01 -0700 (MST) From: "Aaron D. Gifford" <agifford@infowest.com> To: security@freebsd.org Subject: Re: BIND NXT Bug Vulnerability Message-ID: <19991111213301.D44DE20F66@infowest.com>
next in thread | raw e-mail | index | archive | help
Hmmm, looking at the ISC BIND web site page regarding versions and the various newly discovered problems that affect them, it appears that 8.1.2 is vulnerable to only 5 of the 6 new problems, but NOT the NXT bug. A few fun things I discovered when upgrading from 8.1.2 to 8.2.2-P3 include: The new version no longer supports "allow-query" sections in the "hint" zone type. The old 8.1.2 happily accepted them without complaint. When I restarted with the new version, this caused my "." zone hits file to be rejected, so all queries to the outside world stopped dead in the water until I removed that section. As was already mentioned in this thread, BIND's default installation and startup location for the named.conf file is /etc/named.conf while FreeBSD's is /etc/namedb/named.conf -- a quick symlink fixes that too. Aaron out. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19991111213301.D44DE20F66>