I'm not sure whether this was mentioned on SLUG, but all versions of Bind below 8.2.3-REL are vulnerable to a remote root exploit - already available in Script Kiddy Format(tm). The Redhat packages are already avaiable at mirror.aarnet - as is the source at www.isc.org Please tell your fellow admins, because the last time this happened with bind, there were whole piles of rootshells created all over the 'net. Oh, and don't forget to hide your version.bind in your chaos class for a bit of obscurity. //umar. -- SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/ More Info: http://slug.org.au/lists/listinfo/slug
