[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] Bindworm (LION)

Subject: Re: [cobalt-security] Bindworm (LION)
From: Gossi The Dog <gossi@xxxxxxxxxxxxxx>
Date: Mon, 26 Mar 2001 18:03:28 +0100 (BST)
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

On Mon, 26 Mar 2001, Mike Fritsch wrote:

>
>
>
> > have cobalt put a patch out yet?
> > or will we have to wait until we have been hacked (AGAIN)?
>
> I do not think the version of BIND that raq3/raq4s are running is
> vulnerable. On the site it says 8.2.3-REL is not vulnerable and cobalt is
> running:
>
> named 8.2.3-REL Tue Jan 30 16:56:25 PST 2001
> admin@xxxxxxxxxxxxxxxxxx:/home/redhat/BUILD/bind-8.2.3/src/bin/named

The problem is caused administrators not installing the patch, installing
it but bungling it up, and a couple that installed the bind 8.2.3 beta's
and thought they were protected (only the release version has the security
patch, nack).

Gossi The Dog.

References:
- Re: [cobalt-security] Bindworm (LION)
  - From: Mike Fritsch

Prev by Date: RE: [cobalt-security] Bindworm (LION)
Next by Date: [cobalt-security] Aris (Attack Registry and Intelligence Service) Analyser
Previous by thread: Re: [cobalt-security] Bindworm (LION)
Next by thread: RE: [cobalt-security] Bindworm (LION)

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index