On Wednesday, November 13, 2002, at 08:21 PM, Oden Eriksson wrote: [...]
* Wed Nov 13 2002 Oden Eriksson <[EMAIL PROTECTED]> 8.3.3-3mdk
- security fix for multiple flaws in the code (P10) possible addresses;
CAN-2002-1219, CAN-2002-1220 and CAN-2002-1221, this is something
for mandrakesecurity to sort out on paid workingtime ;)
Will be out tomorrow.
Why? They're not going to scan for a version before trying to exploit. They're just going to hammer every DNS server they can find. I've said it before a million times but, let's make it a million and one: Security through obscurity is no security at all.- updated S6 to _show_ a fake version to fool the script kiddies even more, root should change this later to maybe 9.2.2? updated root cache file from internic
Anyways, bind8 is only in 7.2 and SNF7.2... 8.0+ install bind9 by default. I'm actually impressed that bind9 isn't affected by any of this, but it sure makes it easy to support. Why are you still using bind8 (I'm assuming you're not using a 7.2 box since this is on cooker).
Actually, the real question, is why are you still using bind at all? ISC screwed the pooch on this one big time... I wouldn't touch bind after this mess with a 10 foot pole.
--
MandrakeSoft Security; http://www.mandrakesecure.net/
"lynx -source http://linsec.ca/vdanen.asc | gpg --import"
{FE6F2AFD: 88D8 0D23 8D4B 3407 5BD7 66F9 2043 D0E5 FE6F 2AFD}
PGP.sig
Description: PGP signature
