FreeBSD Security Advisory FreeBSD-SA-08:06.bind
Michael Scheidell
scheidell at secnap.net
Mon Jul 14 01:35:38 UTC 2008
NOTE WELL: If a port number is specified via the query-source or
query-source-v6 options to BIND, randomized port selection will not be
used. Consequently it is strongly recommended that these options not
be used to specify fixed port numbers
--
Michael Scheidell, CTO
>|SECNAP Network Security
Winner 2008 Network Products Guide Hot Companies
FreeBSD SpamAssassin Ports maintainer
> From: Mark Andrews <Mark_Andrews at isc.org>
> Date: Mon, 14 Jul 2008 10:29:36 +1000
> To: <freebsd-security at freebsd.org>
> Cc: FreeBSD Security Advisories <security-advisories at freebsd.org>
> Subject: Re: FreeBSD Security Advisory FreeBSD-SA-08:06.bind
>
>
> There was no mention of checking named.conf to ensure that
> a port was not specified in the query-source clauses. Just
> upgrading will not fix the problem it if named.conf has
>
> "query-source port 53".
>
> Mark
> --
> Mark Andrews, ISC
> 1 Seymour St., Dundas Valley, NSW 2117, Australia
> PHONE: +61 2 9871 4742 INTERNET: Mark_Andrews at isc.org
> _______________________________________________
> freebsd-security at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-security
> To unsubscribe, send any mail to "freebsd-security-unsubscribe at freebsd.org"
_________________________________________________________________________
This email has been scanned and certified safe by SpammerTrap(r).
For Information please see http://www.spammertrap.com
_________________________________________________________________________
More information about the freebsd-security
mailing list