 |  |
Re: BIND4/8 Vulnerabilities (LONG)
From: Mia''s Virtual Post Office
Date: Tuesday, November 12, 2002
Time: 1:25:39 pm
On Tuesday, November 12, 2002, at 02:02 PM, Len Conrad wrote:
>
>> Sorry for the long post.. Is there anything to worry about here with
>> QNDS and OSX?
>
> As standard practice, you should have recursion disabled or restricted
> to the smallest set of subnets, which would shield you from an
> external attacker triggering poisoning of your cache with this > exploit.
>
Well if this is such a standard practice, why does M&M not follow it on
their own name servers? Of course we can do this, but it's going to
cause issues with a limited number of customers. I can use myself as an
example; I use jer.mia.net and ns2.mia.net as my nameservers, and if we
restrict recursive queries to our ips only then I'm gonna lose
nameservice at home and I'll have to switch to TimeWarners crap dns
servers.
In any even 8.3.4 will be out and we'll be patched well before people
start exploiting this anyway.
thanx again!
Regards,
Jeremy Anthony Kinsey
VP Network Operations Colocate Your Server at hostdrive.com
________________________________________________________
www.bella-mia.com Maria's Internet Access
www.mia.net
www.dslone.com
Bella Mia, Inc.
401 Host Drive e-mail: jer@mia.net
Lake Geneva, WI. 53147 Phone: (262)248-6759 Fax: (262)248-6959
Messages In This Thread:
Return to Digital Point Solutions' Home Page
| home | |
| products | |
| services | |
| support | |
| email lists |
| optigold isp | |
| optigold isp news | |
| home inspection | |
| inspectrix | |
| java companion | |
| oracle | |
| quickdns pro | |
| search engine | |
| veterinary |
| tips | |
| employees | |
| free tools | |
| portfolio | |
| jobs | |
| contact |
888/4-DPOINTSupport:
858/452-3696