On Fri, Feb 22, 2002 at 09:32:34AM -0500, Jason Pappas wrote: > There are many known hacks in BIND. I'd investigate that. > > - make sure you have the latest bind version. > - chroot your bind install > - suid you bind daemon > - not give them any access to any system commands (ssh, telnet, etc) when > you chroot > - restrict connections at the firewall that can be made both from and to > this DNS server
- DENY TCP port 53. Kills bind sploits dead. -- Unplug and get connected: http://www.seattlewireless.net/
