From owner-freebsd-security Tue Nov 12 15:47:10 2002 Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D590B37B401 for ; Tue, 12 Nov 2002 15:47:07 -0800 (PST) Received: from gw.nectar.cc (gw.nectar.cc [208.42.49.153]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1F14F43E42 for ; Tue, 12 Nov 2002 15:47:07 -0800 (PST) (envelope-from nectar@nectar.cc) Received: by gw.nectar.cc (Postfix, from userid 1001) id 913092C; Tue, 12 Nov 2002 17:47:06 -0600 (CST) Date: Tue, 12 Nov 2002 17:47:06 -0600 From: "Jacques A. Vidrine" To: Michael Carew Cc: freebsd-security@FreeBSD.ORG Subject: Re: ISS Security Advisory: Multiple Remote Vulnerabilities in BIND4 and BIND8 (fwd)] Message-ID: <20021112234706.GB62028@hellblazer.nectar.cc> Mail-Followup-To: "Jacques A. Vidrine" , Michael Carew , freebsd-security@FreeBSD.ORG References: <20021112172820.GV96637@techometer.net> <07dc01c28aa4$fdb51d50$0d11000a@wscarewm> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <07dc01c28aa4$fdb51d50$0d11000a@wscarewm> User-Agent: Mutt/1.3.27i X-Url: http://www.celabo.org/ Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Wed, Nov 13, 2002 at 10:41:15AM +1100, Michael Carew wrote: > One thing that the advisory seems to leave out, is limiting recursion, > rather than disabling. It leaves it out because it doesn't help much. Your name server will still query other name servers, and those other name servers (or someone spoofing them, maybe) can send malicious replies that your name server will process. Cheers, -- Jacques A. Vidrine http://www.celabo.org/ NTT/Verio SME . FreeBSD UNIX . Heimdal Kerberos jvidrine@verio.net . nectar@FreeBSD.org . nectar@kth.se To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message