Date: Tue, 12 Nov 2002 17:47:06 -0600 From: "Jacques A. Vidrine" <nectar@FreeBSD.org> To: Michael Carew <MichaelCarew@bytecraftsystems.com> Cc: freebsd-security@FreeBSD.ORG Subject: Re: ISS Security Advisory: Multiple Remote Vulnerabilities in BIND4 and BIND8 (fwd)] Message-ID: <20021112234706.GB62028@hellblazer.nectar.cc> In-Reply-To: <07dc01c28aa4$fdb51d50$0d11000a@wscarewm> References: <20021112172820.GV96637@techometer.net> <07dc01c28aa4$fdb51d50$0d11000a@wscarewm>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Nov 13, 2002 at 10:41:15AM +1100, Michael Carew wrote: > One thing that the advisory seems to leave out, is limiting recursion, > rather than disabling. It leaves it out because it doesn't help much. Your name server will still query other name servers, and those other name servers (or someone spoofing them, maybe) can send malicious replies that your name server will process. Cheers, -- Jacques A. Vidrine <nectar@celabo.org> http://www.celabo.org/ NTT/Verio SME . FreeBSD UNIX . Heimdal Kerberos jvidrine@verio.net . nectar@FreeBSD.org . nectar@kth.se To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20021112234706.GB62028>