From owner-freebsd-security  Wed Jan 31 20:56: 7 2001
Delivered-To: freebsd-security@freebsd.org
Received: from sonar.noops.org (adsl-63-195-97-84.dsl.snfc21.pacbell.net [63.195.97.84])
	by hub.freebsd.org (Postfix) with ESMTP id F0FB837B4EC
	for <freebsd-security@FreeBSD.ORG>; Wed, 31 Jan 2001 20:55:49 -0800 (PST)
Received: from localhost (root@localhost)
	by sonar.noops.org (8.9.3/8.9.3) with ESMTP id UAA00410;
	Wed, 31 Jan 2001 20:49:07 -0800 (PST)
	(envelope-from root@noops.org)
Date: Wed, 31 Jan 2001 20:49:02 -0800 (PST)
From: Thomas Cannon <root@noops.org>
To: Marc Rassbach <marc@milestonerdl.com>
Cc: Chris Johnson <cjohnson@palomine.net>,
	Matt Dillon <dillon@earth.backplane.com>,
	Przemyslaw Frasunek <venglin@freebsd.lublin.pl>,
	freebsd-security@FreeBSD.ORG
Subject: Re: FreeBSD Security Advisory: FreeBSD-SA-01:18.bind
In-Reply-To: <Pine.BSF.4.21.0101312024580.58309-100000@sonar.noops.org>
Message-ID: <Pine.BSF.4.21.0101312047220.379-100000@sonar.noops.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

> implied. I've a feeling the ISC isn't sending anyone a check for the bind
> exploit just posted to bugtraq from nobody@replay.com, or to NAI

Funny, I just took a look at that bind exploit that was posted -- it has
that "oh so very much a trojan" look to it. I think it's a DoS for NAI.

Ouch.

-t



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message