On Wed, 1 Mar 2000, Timothy Lillicrap wrote:
> Just a quick question. I have seen a great deal of mail about the attack made
> through a weakness in Bind on someones system in the last day or so. Am I in
> danger of being comprimised by this attack???? I have two RH 6.0 machines
> (esentially out of the box) which both run bind. I have not updated the bind
> which came with the original setup...
>
> Am I safe from this attack because I have an older version of bind or should I
> still be concerned????
>
I have a thought on this thread: How many people are running bind but only
for the caching name server? Wouldn't is make sense to setup named in that
case to only listen to specific interfaces rather than all interfaces on a
machine?
Something like:
options {
listen-on { 127.0.0.1; };
}
in /etc/named.conf would make it so named is not exposed to the outside,
yet still provides the benefits of caching....
Just a thought,
Bill Carlson
------------
Systems Programmer [EMAIL PROTECTED] | Opinions are mine,
Virtual Hospital http://www.vh.org/ | not my employer's.
University of Iowa Hospitals and Clinics |
--
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.
