From owner-freebsd-questions  Mon Mar 26 13:46:25 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from obsecurity.dyndns.org (adsl-63-207-60-89.dsl.lsan03.pacbell.net [63.207.60.89])
	by hub.freebsd.org (Postfix) with ESMTP id 8125537B718
	for <freebsd-questions@freebsd.org>; Mon, 26 Mar 2001 13:46:22 -0800 (PST)
	(envelope-from kris@obsecurity.org)
Received: by obsecurity.dyndns.org (Postfix, from userid 1000)
	id 2702466F83; Mon, 26 Mar 2001 13:46:22 -0800 (PST)
Date: Mon, 26 Mar 2001 13:46:22 -0800
From: Kris Kennaway <kris@obsecurity.org>
To: Bill Moran <wmoran@iowna.com>
Cc: Kris Kennaway <kris@obsecurity.org>,
	freebsd-questions@freebsd.org
Subject: Re: HEADS UP: BIND 8.2.3 INSECURITY (Re: BIND 8.2.3 Crashing Question)
Message-ID: <20010326134622.B7648@xor.obsecurity.org>
References: <Pine.BSF.4.21.0103242222120.391-100000@shazam.int> <3ABE1342.4A9CDFFF@iowna.com> <20010325143048.C45772@xor.obsecurity.org> <3ABF62CC.1A8846ED@iowna.com>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-md5;
	protocol="application/pgp-signature"; boundary="/NkBOFFp2J2Af1nK"
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <3ABF62CC.1A8846ED@iowna.com>; from wmoran@iowna.com on Mon, Mar 26, 2001 at 10:39:56AM -0500
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG


--/NkBOFFp2J2Af1nK
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline

On Mon, Mar 26, 2001 at 10:39:56AM -0500, Bill Moran wrote:

> 1. Can anyone direct me to a specific place where I can find details on
> the exploits? The best information I've found so far today is on ISC's
> site and all they say is that this is "critical" and "exploitable". I
> need to know just how potentially exploitable, so I can assess whether
> or not to be concerned that the internal network may have been
> compromised.

Check bugtraq on www.securityfocus.com.  Sorry, I don't have an exact URL.

The answer is "very exploitable", as in "can't be worked around",
although if you can run bind as a non-privileged user in a chroot then
it mitigates the effects a bit.  The FreeBSD advisory gives a pointer
on how to do this, I believe.

Kris
--/NkBOFFp2J2Af1nK
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.4 (FreeBSD)
Comment: For info see http://www.gnupg.org

iD8DBQE6v7itWry0BWjoQKURAnb0AJ4z5o6NvP2L05YseeXfmaTyRfT8vACcDrMy
b9nvPbFoWRsZBjaHibwJHJo=
=ydJB
-----END PGP SIGNATURE-----

--/NkBOFFp2J2Af1nK--

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message