From owner-freebsd-security  Thu Jun 12 11:30:22 1997
Return-Path: <owner-security>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.5/8.8.5) id LAA12621
          for security-outgoing; Thu, 12 Jun 1997 11:30:22 -0700 (PDT)
Received: from nagual.pp.ru (ache.relcom.ru [194.58.229.133])
          by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA12549;
          Thu, 12 Jun 1997 11:29:51 -0700 (PDT)
Received: (from ache@localhost)
	by nagual.pp.ru (8.8.5/8.8.5) id WAA00867;
	Thu, 12 Jun 1997 22:29:25 +0400 (MSD)
Date: Thu, 12 Jun 1997 22:29:24 +0400 (MSD)
From: =?KOI8-R?B?4c7E0sXKIP7F0s7P1w==?= <ache@nagual.pp.ru>
To: Dmitry Valdov <dv@kis.ru>
cc: freebsd-security@freebsd.org, peter@freebsd.org
Subject: Re: DNS abuse (fwd)
In-Reply-To: <Pine.BSF.3.95q.970612200242.10541A-100000@xkis.kis.ru>
Message-ID: <Pine.BSF.3.96.970612222712.845A-100000@nagual.pp.ru>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-security@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk

On Thu, 12 Jun 1997, Dmitry Valdov wrote:

> named in 2.1.5 is vulnerable...
> Is 2.2.x's named vulnerable too?

Even -current named 4.9.5-P1 is vulnerable.

> 
> Test this URL to see if your DNS is abusable.
> 
>         http://apostols.org/toolz/dnshack.cgi

-- 
Andrey A. Chernov
<ache@null.net>
http://www.nagual.pp.ru/~ache/