recent advisory information
Dave Wreski
dave at nic.com
Fri Oct 8 18:05:42 UTC 1999
Hi all. I'm reading the CIAC advisory regarding the vulnerability in bind
that causes it to become a traffic amplifier. J-063 is the CIAC number.
It says it is required to add a patch to the 8.2.1 source. The
documentation is kind of confusing. Is it actually required, or will
restricting spoofing and zone transfers fix the problem? I'm wondering
why the ISC hasn't upgraded to bind-8.2.2, or 1a, etc, with this patch?
Is there an updated RPM for RH 6?
Thanks,
Dave
More information about the bind-users
mailing list