[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] libc resolver issue

Subject: Re: [cobalt-security] libc resolver issue
From: "E.B. Dreger" <eddy+public+spam@xxxxxxxxxxxxxxxxx>
Date: Wed, 3 Jul 2002 10:16:58 +0000 (GMT)
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

MS> Date: Wed, 3 Jul 2002 10:12:30 +0200
MS> From: Michael Stauber


MS> I'd say it looks like we're affected. All RaQs (except the
MS> RaQ550) use a lightly modified bind-8.2.3 which in general
MS> is listed as vulnerable according to the ISC:
MS> 
MS> http://www.isc.org/products/BIND/bind8.html
MS> 
MS> There are sources for a fixed Bind-8.3.3 available from their
MS> webpage. I gues (hope?) SUN Cobalt is working on a fix at the
MS> moment.

libresolv is the culprit.  This is uglier than your standard BIND
patchfest.


Eddy
--
Brotsman & Dreger, Inc. - EverQuick Internet Division
Bandwidth, consulting, e-commerce, hosting, and network building
Phone: +1 (785) 865-5885 Lawrence and [inter]national
Phone: +1 (316) 794-8922 Wichita

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Date: Mon, 21 May 2001 11:23:58 +0000 (GMT)
From: A Trap <blacklist@xxxxxxxxx>
To: blacklist@xxxxxxxxx
Subject: Please ignore this portion of my mail signature.

These last few lines are a trap for address-harvesting spambots.
Do NOT send mail to <blacklist@xxxxxxxxx>, or you are likely to
be blocked.

References:
- Re: [cobalt-security] libc resolver issue
  - From: Michael Stauber

Prev by Date: Re: [cobalt-security] libc resolver issue
Next by Date: Re: [cobalt-security] libc resolver issue
Previous by thread: Re: [cobalt-security] libc resolver issue
Next by thread: Re: [cobalt-security] libc resolver issue

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index