Date: Wed, 31 Jan 2001 20:01:42 -0500 From: Chris Johnson <cjohnson@palomine.net> To: Przemyslaw Frasunek <venglin@freebsd.lublin.pl> Cc: freebsd-security@freebsd.org Subject: Re: FreeBSD Security Advisory: FreeBSD-SA-01:18.bind Message-ID: <20010131200142.A90211@palomine.net> In-Reply-To: <20010201014819.H675@riget.scene.pl>; from venglin@freebsd.lublin.pl on Thu, Feb 01, 2001 at 01:48:19AM %2B0100 References: <200101312123.f0VLNL134920@freefall.freebsd.org> <Pine.LNX.4.30.0101312352150.3617-100000@jamus.xpert.com> <20010201014819.H675@riget.scene.pl>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, Feb 01, 2001 at 01:48:19AM +0100, Przemyslaw Frasunek wrote: > On Wed, Jan 31, 2001 at 11:55:18PM +0200, Roman Shterenzon wrote: > > Why not make it default in the base system? > > The best workaround is not using BIND at all. Consider some alternatives, > like /usr/ports/net/djbdns. Yes! Why work around BIND limitiations and do all this sandboxing to try to limit the damage it can do to you, when there's a better alternative? Chris To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010131200142.A90211>