Skip site navigation (1)Skip section navigation (2) 
Date:      Sun, 13 Jul 2008 21:13:47 -0400
From:      Michael Scheidell <scheidell@secnap.net>
To:        Mark Andrews <Mark_Andrews@isc.org>, <freebsd-security@freebsd.org>
Cc:        FreeBSD Security Advisories <security-advisories@freebsd.org>
Subject:   Re: FreeBSD Security Advisory FreeBSD-SA-08:06.bind 
Message-ID:  <C4A0208B.5D154%scheidell@secnap.net>
In-Reply-To: <200807140029.m6E0TaRg059266@drugs.dv.isc.org>
next in thread | previous in thread | raw e-mail | index | archive | help 
NOTE WELL: If a port number is specified via the query-source or
query-source-v6 options to BIND, randomized port selection will not be
used.  Consequently it is strongly recommended that these options not
be used to specify fixed port numbers
-- 
Michael Scheidell, CTO
>|SECNAP Network Security
Winner 2008 Network Products Guide Hot Companies
FreeBSD SpamAssassin Ports maintainer


> From: Mark Andrews <Mark_Andrews@isc.org>
> Date: Mon, 14 Jul 2008 10:29:36 +1000
> To: <freebsd-security@freebsd.org>
> Cc: FreeBSD Security Advisories <security-advisories@freebsd.org>
> Subject: Re: FreeBSD Security Advisory FreeBSD-SA-08:06.bind
> 
> 
> There was no mention of checking named.conf to ensure that
> a port was not specified in the query-source clauses.  Just
> upgrading will not fix the problem it if named.conf has
> 
> "query-source port 53".
> 
> Mark
> -- 
> Mark Andrews, ISC
> 1 Seymour St., Dundas Valley, NSW 2117, Australia
> PHONE: +61 2 9871 4742                 INTERNET: Mark_Andrews@isc.org
> _______________________________________________
> freebsd-security@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-security
> To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"

_________________________________________________________________________
This email has been scanned and certified safe by SpammerTrap(r). 
For Information please see http://www.spammertrap.com
_________________________________________________________________________

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?C4A0208B.5D154%scheidell>