[SunHELP] Re: Filtering with Solaris 8 x86
Erik Parker
sunhelp at sunhelp.org
Fri Dec 1 14:22:16 CST 2000
-----BEGIN PGP SIGNED MESSAGE-----
> > A long time ago, in a galaxy far, far way, someone said...
> >
> > > As for the guy who said to upgrade bind, hate to tell you, but Bind is a
> > > walking talking remote exploit, at any version. In most of our contracts
> > > we take for forensic analisys, we've found one thing in common on
> > > un-explainable remotely owned standalone hosts. Bind 8 (even
> > current), and
> > > bind 4.9.7.
> >
> > News to me (and probably others) since there have been to reported root
> > holes since before 8.2.2p5.
> >
> > Care to elaborate?
Like the other guy said, p7 is the "ok" one now. I can't elaborate,
because I can't provide proof. We've only ever done forensics on them,
we've never had sniffers in place beforehand to see it done. It's just a
strong assumption that I'll believe. Lots of rumors and blah blah.. I just
know from history, and present, that bind leads to problems in my
experience, even "properly configured" ones. Wish I could tell you more,
something you could base it off of.
Erik Parker
Mind Security
An armed society, is a polite society.
-----BEGIN PGP SIGNATURE-----
Version: 2.6.2
iQCVAwUBOigIfwXyXsWriL9lAQGsugQApGDekXQ0ly52aL8wniqTBztT/K77WNJI
+yQzsgHs90uPIHECLNwiSNgq11U34juy23auGSB5TqMe6yJanXPkcSRrmERST4/7
JdiFXeK8E1CFwB0ts92eY6whpUvcqc4F8p1rxC/hifL4HXcTGOZdvvMU4w30iwhf
wCX1KfGcRWA=
=alc4
-----END PGP SIGNATURE-----
More information about the SunHELP
mailing list