From owner-freebsd-hackers@FreeBSD.ORG Tue Sep 16 17:22:23 2003 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 52E5E16A4B3 for ; Tue, 16 Sep 2003 17:22:23 -0700 (PDT) Received: from basement.kutulu.org (pcp03610121pcs.longhl01.md.comcast.net [68.49.239.235]) by mx1.FreeBSD.org (Postfix) with ESMTP id E96AD43FB1 for ; Tue, 16 Sep 2003 17:22:21 -0700 (PDT) (envelope-from kutulu@kutulu.org) Received: from wombat.localnet (wombat.localnet [192.168.69.3]) by basement.kutulu.org (Postfix) with ESMTP id 7A582A9FA; Tue, 16 Sep 2003 20:22:20 -0400 (EDT) Received: by wombat.localnet (Postfix, from userid 1001) id 41428B927; Tue, 16 Sep 2003 20:22:20 -0400 (EDT) Date: Tue, 16 Sep 2003 20:22:20 -0400 From: Michael Edenfield To: "M. Warner Losh" , jdp@polstra.com, freebsd-hackers@freebsd.org, dan@langille.org Message-ID: <20030917002219.GC84494@wombat.localnet> Mail-Followup-To: "M. Warner Losh" , jdp@polstra.com, freebsd-hackers@freebsd.org, dan@langille.org References: <3F673E27.29338.6E87ACC@localhost> <20030916.175558.10083602.imp@bsdimp.com> <20030917001810.GA84494@wombat.localnet> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="9Ek0hoCL9XbhcSqy" Content-Disposition: inline In-Reply-To: <20030917001810.GA84494@wombat.localnet> X-Mailer: Mutt http://www.mutt.org/ X-Accept-Language: en X-PGP-Key: http://www.kutulu.org/pgp/kutulu.asc X-PGP-Fingerprint: 1CE0 3C31 7013 D529 406D 37DC 09CC CD84 A46C 878F User-Agent: Mutt/1.5.4i Subject: Re: Any workarounds for Verisign .com/.net highjacking? X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 17 Sep 2003 00:22:23 -0000 --9Ek0hoCL9XbhcSqy Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable * Michael Edenfield [030916 20:21]: > * M. Warner Losh [030916 20:12]: > > I think we should put a filter for this nonsense into the base > > system. Hack the resolve to filter out the adddress, and hack bind to > > filter it out too. that way we can leverage our position in the name > > servers in the world to do something about this BS. >=20 > ISC claims they'll have a patch ready for the stock BIND sometime in the > next few days for this. All we need to do is import it :) In particular, see: http://apnews.excite.com/article/20030916/D7TJOF3G0.html "Though running the software update is optional, Vixie expects many customers will. The consortium was testing the patch Tuesday and planned to release it by Wednesday." --Mike --9Ek0hoCL9XbhcSqy Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (FreeBSD) iD8DBQE/Z6k7CczNhKRsh48RAvd2AJ0eSrahUlvspO1rl1pGSehrMVM5HACfRfg4 ii2fgpekl8vBfkSefwylJqU= =0gaB -----END PGP SIGNATURE----- --9Ek0hoCL9XbhcSqy--