From owner-freebsd-security Wed Feb 21 18:38:52 2001 Delivered-To: freebsd-security@freebsd.org Received: from mail.interchange.ca (ns.interchange.ca [216.126.79.2]) by hub.freebsd.org (Postfix) with ESMTP id 507C737B503 for ; Wed, 21 Feb 2001 18:38:47 -0800 (PST) (envelope-from michael@fastmail.ca) Received: by mail.interchange.ca (Fastmailer, from userid 555) id B97A521F0; Wed, 21 Feb 2001 21:38:31 -0500 (EST) MIME-Version: 1.0 Message-Id: <3A947BA7.000017.60978@frodo.searchcanada.ca> Content-Type: Multipart/Mixed; boundary="------------Boundary-00=_7O052I4YA1UMYJ0CCJD0" To: silby@silby.com Subject: Re: Bind problems Cc: freebsd-security@freebsd.org From: "Michael Richards" X-Fastmail-IP: 24.156.176.65 Date: Wed, 21 Feb 2001 21:38:31 -0500 (EST) Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org --------------Boundary-00=_7O052I4YA1UMYJ0CCJD0 Content-Type: Text/Plain Content-Transfer-Encoding: 7bit Hrm. I looked at bugtraq id 2302 for this info. It says: vulnerable ISC BIND 8.2.2 p7 ISC BIND 8.2.2 p6 ISC BIND 8.2.2 p5 ISC BIND 8.2.2 p4 ISC BIND 8.2.2 p3 ISC BIND 8.2.2 p2 ISC BIND 8.2.2 p1 ISC BIND 8.2.2 ISC BIND 8.2.1 ISC BIND 8.2 4.2.4 not vulnerable ISC BIND 9.1 ISC BIND 9.0 ISC BIND 8.2.3 Since my version was: 8.2.3-T6B isn't that the variety that's not vulnerable? -Michael >> Since the big BIND vulnerability, I checked all my versions of >> BIND to make sure they weren't the 8.2.2 variety. None were. >> >> Most returned: named 8.2.3-T6B Thu Nov 23 19:00:06 EST 2000 >> Which is not supposed to be vulnerable. > > Yes, it is totally and completely vulnerable. The advisory could > not have been more clear. > > Mike "Silby" Silbersack _________________________________________________________________ http://fastmail.ca/ - Fast Free Web Email for Canadians --------------Boundary-00=_7O052I4YA1UMYJ0CCJD0-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message