Subject: Re: security/11459: possible fix for remote DoS attack in BIND-8.2.2-P5
To: Greg A. Woods <firstname.lastname@example.org>
From: None <email@example.com>
Date: 11/10/2000 15:49:52
>Yes, the change given in RedHat's bugzilla to the value given to
>STREAM_AXFRIXFR (in ns_defs.h) may be correct, at least assuming that
>STREAM_AXFRIXFR isn't intended as a multi-purpose value specifying two
>flags simultaneously (which would, IMHO, be bad programming anyway).
>However either the patch I originally attached, or perhaps this more
>generic and possibly more correct patch, is still absolutely necessary:
i'm looking at 822P7. 822P7 changes STREAM_AXFRIXFR only. there's no
code change in ns_xfr.c.