Re: FreeBSD 7.1 and BIND exploit

---

• From: Subhro <subhro.kar@xxxxxxxxx>
• Date: Sun, 20 Jul 2008 23:54:59 +0530

---

Cilton,

Off topic, but could you please tell me (us) the advantages(and
disadvantages) of djbdns over bind?

Thanks
Subhro

On Sun, Jul 20, 2008 at 11:45 PM, Clifton Royston <cliftonr@xxxxxxxx> wrote:

On Sat, Jul 19, 2008 at 08:30:57PM -0600, Brett Glass wrote:

Everyone:

Will FreeBSD 7.1 be released in time to use it as an upgrade to
close the BIND cache poisoning hole? We'd like to upgrade affected
servers to the latest FreeBSD at the same time that we upgrade
BIND if possible.

Given that 7.1 and 6.4 are still listed as "August" in the RE page,
and things often slip a bit as the date approaches, I'd say you'd be
well-advised not to wait. Assuming you're running 7.0 or 6.3, upgrade
to the latest _RELENG patch which is much less work than a full version
upgrade.

My opinion only. I'm not a developer, and I'm not running any
recursive resolvers on BIND these days; my limited set of machines are
running djbdns instead, so I have more flexibility.

-- Clifton

--
Clifton Royston -- cliftonr@xxxxxxxxxxxxxxxxxx / cliftonr@xxxxxxxx
President - I and I Computing * http://www.iandicomputing.com/
Custom programming, network design, systems and network consulting services
_______________________________________________
freebsd-stable@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-stable
To unsubscribe, send any mail to "freebsd-stable-unsubscribe@xxxxxxxxxxx"

--
Subhro Kar
Software Engineer
Dynamic Digital Technologies Pvt. Ltd.
EPY-3, Sector: V
Salt Lake City
700091
India
_______________________________________________
freebsd-stable@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-stable
To unsubscribe, send any mail to "freebsd-stable-unsubscribe@xxxxxxxxxxx"

---

• References:
  • FreeBSD 7.1 and BIND exploit
    • From: Brett Glass
  • Re: FreeBSD 7.1 and BIND exploit
    • From: Clifton Royston

• Prev by Date: Re: FreeBSD 7.1 and BIND exploit
• Next by Date: Re: FreeBSD 7.1 and BIND exploit
• Previous by thread: Re: FreeBSD 7.1 and BIND exploit
• Next by thread: Re: FreeBSD 7.1 and BIND exploit
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: FreeBSD 7.1 and BIND exploit ... | Will FreeBSD 7.1 be released in time to use it as an upgrade to ... BIND, update BIND now. ... Make sure that you are not specifying a port via any ... (freebsd-stable) RE: [COVERT-2001-01] Multiple Vulnerabilities in BIND - FreeBSD Implications ? ... Multiple Vulnerabilities in BIND - FreeBSD ... To those that want to upgrade to 8.2.3-REL before the official FreeBSD ... with "unsubscribe freebsd-security" in the body of the message ... (FreeBSD-Security) Re: File ownerships revert on reboot ... AFAIK FreeBSD still ships with BIND. ... But djbdns is a dragon to maintain. ... distribution and the default setup is fairly secure (and pretty easy to secure ... (comp.unix.bsd.freebsd.misc) Re: DNS resources or "toaster" ... > I have administered their DNS servers using BIND for a number of years ... I have 2 boxes where FreeBSD ... > BIND or DJBDNS of which I've heard much good. ... (freebsd-questions) Re: FreeBSD 7.1 and BIND exploit ... Will FreeBSD 7.1 be released in time to use it as an upgrade to ... BIND if possible. ... Custom programming, network design, systems and network consulting services ... (freebsd-stable)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• Mailing-Lists
• Newsgroups
• About
• Privacy
• Search
• Imprint

unix.derkeiler.com  > Mailing-Lists  > FreeBSD  > stable  > 2008-07