|
|
|
| This is a major problem. If you're using version 4 or 8 BIND apply the patch or upgrade to version 9.
http://www.infoworld.com/articles/h...le.xml?p=br&s=3
"A VULNERABILITY RECENTLY discovered in the software used in most DNS (Domain Name System) servers may be the most serious security threat yet found on the Internet, allowing hackers effectively to shut down ISPs and corporate Web servers as well as steal confidential data."
[This message has been edited by ccieToBe (edited 01-30-2001).] | |
|
| Ermmmm,
This is all greek to me. What is bind? | |
|
| Berkeley Internet Name Domain. It's the software that is used by most DNS servers, which translate IP addresses to regular URL's. This could allow an attacker to block access to your site, or to allow them to redirect traffic to another site and steal the information. | |
|
| Is Microsofts version of dns in Nt 4.0 and W2K the same? Does it use bind? I've never heard this term before... | |
|
| Microsoft uses a proprietary version of DNS. BIND is by far the most widely used DNS service amoung Unix based OSs. Almost every major DNS server server out there uses BIND which is why the security hole is such a major threat. | |
|
| So Bind is platform/flavour independent in Linux/Unix? I can use a copy in freebsd, and then turn around and install the same updated version from the same disk(s) in redhat/suse/ect...? | |
|
| I would like to recommend djbdns by Daniel J. Bernstein (http://cr.yp.to).
This is a high performance and most secure Name Server daemon. | |
|
| If you have the source for BIND you should be able to install it on most Unix variants. Binaries only work with the platform they were made for, and any others that can read that platform's programs. | |
|
| Ok, thanks  | |
|
| Bind is available for NT but very seldom used as most people that use NT as a DNS server use the DNS service supplied by MS.
|
|
|
|