Re: named exploit

To: "Steven M. Bellovin" <smb%cs.columbia.edu@localhost>
Subject: Re: named exploit
From: Geert Hendrickx <ghen%telenet.be@localhost>
Date: Thu, 24 Jul 2008 19:03:50 +0200

On Thu, Jul 24, 2008 at 08:17:27AM -0400, Steven M. Bellovin wrote:
> On Thu, 24 Jul 2008 06:03:54 -0600 (MDT)
> Rick Kelly <rmk%toad.rmkhome.com@localhost> wrote:
> 
> > 
> > Looks like a named exploit is out in the wild now.
> > 
> > http://www.caughq.org/exploits/CAU-EX-2008-0002.txt
> > 
> Yes.  Until the fixes are fully in our tree, I suggest running bind9 or
> bind95 from pkgsrc.  (And make sure you disable any query-source lines
> in your named.conf.)


HEAD, netbsd-4 and netbsd-4-0 have the fix already.  netbsd-3* will follow
shortly.


        Geert

Follow-Ups:
- Re: named exploit
  - From: Geert Hendrickx

References:
- named exploit
  - From: Rick Kelly
- Re: named exploit
  - From: Steven M. Bellovin

Prev by Date: Re: gprs through usb mobile phone - i386 works / amd64 not
Next by Date: Re: named exploit
Previous by Thread: Re: named exploit
Next by Thread: Re: named exploit
Indexes:

Home | Main Index | Thread Index | Old Index