From owner-freebsd-security Wed Jan 31 19:25:18 2001 Delivered-To: freebsd-security@freebsd.org Received: from tandem.milestonerdl.com (tandem.milestonerdl.com [204.107.138.1]) by hub.freebsd.org (Postfix) with ESMTP id 8AF2637B69B for ; Wed, 31 Jan 2001 19:25:01 -0800 (PST) Received: from tandem (tandem [204.107.138.1]) by tandem.milestonerdl.com (8.11.1/8.10.0) with ESMTP id a113PYo06935; Wed, 31 Jan 1996 21:25:34 -0600 (CST) Date: Wed, 31 Jan 1996 21:25:34 -0600 (CST) From: Marc Rassbach To: Chris Johnson Cc: Matt Dillon , Przemyslaw Frasunek , freebsd-security@FreeBSD.ORG Subject: Re: FreeBSD Security Advisory: FreeBSD-SA-01:18.bind In-Reply-To: <20010131210232.A91629@palomine.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 31 Jan 2001, Chris Johnson wrote: > On Wed, Jan 31, 2001 at 05:54:34PM -0800, Matt Dillon wrote: > > :Yes! Why work around BIND limitiations and do all this sandboxing to try to > > :limit the damage it can do to you, when there's a better alternative? > > :Chris > > Yah, that's the ticket... kinda like wu-ftpd was created because existing > > ftpd's weren't up to snuff, except wu-ftpd turned out to have literally > > dozens of rootable exploits. > Except that djbdns was written by Dan Bernstein (of qmail fame). He doesn't > know how to write rootable software. And you know this because? Have you done some DNA test and found that Dan Bernstein is not human and therefore unable to make mistakes? Oh, and any 'secret memos/emails' from BIND developers showing that they set out to write 'rootable' software would also be good to see. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message