From owner-freebsd-security Thu Feb 1 2:22:49 2001 Delivered-To: freebsd-security@freebsd.org Received: from flood.ping.uio.no (flood.ping.uio.no [129.240.78.31]) by hub.freebsd.org (Postfix) with ESMTP id C8C3637B684 for ; Thu, 1 Feb 2001 02:22:31 -0800 (PST) Received: (from des@localhost) by flood.ping.uio.no (8.9.3/8.9.3) id LAA29864; Thu, 1 Feb 2001 11:22:26 +0100 (CET) (envelope-from des@ofug.org) X-URL: http://www.ofug.org/~des/ X-Disclaimer: The views expressed in this message do not necessarily coincide with those of any organisation or company with which I am or have been affiliated. To: Alfred Perlstein Cc: Brian Behlendorf , Roman Shterenzon , freebsd-security@FreeBSD.ORG Subject: Re: FreeBSD Security Advisory: FreeBSD-SA-01:18.bind References: <20010131140447.E26076@fw.wintelcom.net> <20010131145423.H26076@fw.wintelcom.net> From: Dag-Erling Smorgrav Date: 01 Feb 2001 11:22:26 +0100 In-Reply-To: Alfred Perlstein's message of "Wed, 31 Jan 2001 14:54:23 -0800" Message-ID: Lines: 14 User-Agent: Gnus/5.0802 (Gnus v5.8.2) Emacs/20.4 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Alfred Perlstein writes: > What I'm worrying about specifically is ndc and other utilities > basically are unix domain sockets not in the expected place all of > sudden? Does anybody read this list, or do you all just post to it without reading anything anyone else is posting? I posted detailed instructions for a) upgrading a vulnerable system without making world, and b) setting up BIND in chroot and jail sandboxes, including how to deal with ndc and log sockets, just a few days ago. DES -- Dag-Erling Smorgrav - des@ofug.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message