<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos network security services platform

Bugtraq: Re: [Summary of Responses] Bound by Tradition: A sampling of the security posture of the Internet's DNS servers

Re: [Summary of Responses] Bound by Tradition: A sampling of the security posture of the Internet's DNS servers

From: Mike Bell <mike_at_mikebell.org>
Date: Tue, 11 Mar 2003 20:10:28 -0800

On Tue, Mar 11, 2003 at 08:30:17AM -0800, Mike Schiffman wrote:
> 12) It is a bit misleading to say djbdns has no security
> vulnerabilities. While it is true that the component programs that
> make up djbdns have not had a known vulnerability, the design of djbdns
> relies on external services (Bernstein recommends rsync over ssh, I
> believe) to replicate data from the primary to secondaries.

By that logic a bug in vi is a bug in BIND, because you need an editor
to maintain zone files.

DJB may recommend rsync over ssh, but djbdns as distributed by DJB only
offers that as one potential way to get data from one computer to another,
you can use any means you see fit to do so.
Received on Mar 12 2003

This message: [ Message body ]
Next message: Torsten Mueller: "Re: QPopper 4.0.x buffer overflow vulnerability"
Previous message: Thor Larholm: "Re: .MHT Buffer Overflow in Internet Explorer"
In reply to: Mike Schiffman: "[Summary of Responses] Bound by Tradition: A sampling of the security posture of the Internet's DNS servers"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]