From owner-freebsd-security Fri May 12 05:38:18 1995 Return-Path: security-owner Received: (from majordom@localhost) by freefall.cdrom.com (8.6.10/8.6.6) id FAA00409 for security-outgoing; Fri, 12 May 1995 05:38:18 -0700 Received: from marble.eps.nagoya-u.ac.jp (marble.eps.nagoya-u.ac.jp [133.6.57.68]) by freefall.cdrom.com (8.6.10/8.6.6) with ESMTP id FAA00403 for ; Fri, 12 May 1995 05:38:16 -0700 Received: from marble.eps.nagoya-u.ac.jp (localhost [127.0.0.1]) by marble.eps.nagoya-u.ac.jp (8.6.12+2.4W/3.3W9) with ESMTP id VAA02876; Fri, 12 May 1995 21:37:50 +0900 Message-Id: <199505121237.VAA02876@marble.eps.nagoya-u.ac.jp> To: rgrimes@gndrsh.aac.dev.com cc: pst@Shockwave.COM, FreeBSD-security@FreeBSD.org Subject: Re: DNS Security Hole In-reply-to: Your message of "Fri, 12 May 1995 00:48:21 MST." <199505120748.AAA00443@gndrsh.aac.dev.com> Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Date: Fri, 12 May 1995 21:37:48 +0900 From: KATO Takenori Sender: security-owner@FreeBSD.org Precedence: bulk > From: "Rodney W. Grimes" > > And the correct thing to do would be to import BIND-4.9.3-BETA17, but > it seems last time this came up Paul Vixie was about to go to an > official release. Is there any new status on that. > > I would prefer not to apply this patch only to have it conflict when > the cvs import of the next official release of bind occured. I don't know what is correct way. I think to import 4.9.3-BETA is not so good, because it is not RELEASE VERSION. I think one of better way is now FreeBSD use bind-4.9.2 and change it into 4.9.3-RELEASE when it is released. (Another way is all programs check PTR record after gethostbyaddr as tcp_wrapper does.) ---------------- KATO Takenori Dept. Earth Planet. Sci. Nagoya Univ. Nagoya 464-01 Japan E-mail: kato@eclogite.eps.nagoya-u.ac.jp