Re: CERT Advisory CA-99-14 Multiple Vulnerabilities in BIND

From: Solar Designer (solarat_private)
Date: Fri Nov 12 1999 - 12:43:08 PST

Next message: John D. Hardin: "Re: [RHSA-1999:054-01] Security problems in bind"

Previous message: Sebastian: "Delegate 5.9.x - 6.0.x remote exploit (possibly others)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello,

> course, recommend upgrading.  In addition, we recommend running your
> nameserver as non-root and chrooted (I know setting this up is non-trivial --
> it'll be much, much easier in BINDv9).

While we're on the topic, there's a patch for running BIND 4.9.7 as
non-root and chrooted, as well as instructions on setting up the
jail, at:

	http://www.openwall.com/bind/

Signed,
Solar Designer

Next message: John D. Hardin: "Re: [RHSA-1999:054-01] Security problems in bind"
Previous message: Sebastian: "Delegate 5.9.x - 6.0.x remote exploit (possibly others)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 15:11:54 PDT