> >I'm using my server as DNS and after few hours named daemon shuts down.
> >I'd like to have some clues on what to start looking for.
>
> Look for this:
>
> http://cr.yp.to/djbdns.html
Oh, c'mon, you can do better than that. That response provides not a shred
of useful information, other than a plug for a DNS server that you happen
to think is more secure. Chances are his box is already compromised if
it's exhibiting those symptoms, and no name server is going to make that
more secure.
Instead, explain to him that this could very well be caused by a
vulnerable BIND version, and he should in the short term upgrade BIND, and
look to implement a perhaps 'more secure' one in the future.
Some security problems, including a remotely exploitable information leak
allowing anyone to read the stack, have been found in bind versions prior
to 8.2.3.
http://www.linuxsecurity.com/advisories/redhat_advisory-1112.html
Securing BIND
http://www.linuxsecurity.com/resource_files/server_security/bind-8.x.txt
CERT Advisory CA-2001-02 Multiple Vulnerabilities in BIND
http://www.linuxsecurity.com/articles/security_sources_article-2393.html
Comprehensive recap of latest security vulnerabilities (each week)
http://www.linuxsecurity.com/vuln-newsletter.html
Paul Vixie and David Conrad on BINDv9 and Internet Security
http://www.linuxsecurity.com/feature_stories/conrad_vixie-1.html
We at linuxsecurity.com welcome pointers to other security information.
Dave
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
