Hi, shouldn't there be a very urgent BIND update somewhere around? I understand the latest flaw doesn't impact system security directly. Nevertheless, it might impact the security of the whole network indirectly. - Olli -- | Oliver Brandmueller | Offenbacher Str. 1 | Germany D-14197 Berlin | | Fon +49-172-3130856 | Fax +49-172-3145027 | WWW: http://the.addict.de/ | | Ich bin das Internet. Sowahr ich Gott helfe. | | Eine gewerbliche Nutzung aller enthaltenen Adressen ist nicht gestattet! |
On 2008-Jul-10 11:40:06 +0200, Oliver Brandmueller <ob@e-Gitt.NET> wrote:>shouldn't there be a very urgent BIND update somewhere around?There has been a very long thread about this in -security. Leaving out the trolls and flaming, the salient points are: - The bind port has been updated to include the relevant patches - The security team is aware of the issue and is working on a fix. -- Peter Jeremy Please excuse any delays as the result of my ISP's inability to implement an MTA that is either RFC2821-compliant or matches their claimed behaviour. -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 195 bytes Desc: not available Url : http://lists.freebsd.org/pipermail/freebsd-stable/attachments/20080710/1ad275fe/attachment.pgp
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Andrew Snow wrote: | Xin LI wrote: |> Speaking as my own: Base system needs more conservative QA process, e.g. | ... |> rushing into a "presumably patched" state would not be a very good |> solution. | | I second this opinion. When there is hype all over the net about a new | vulnerability, it is too easy to allow ill-considered changes to be | rushed in without enough critical thought and testing. And even more so when the perceived "breakage" is in the design rather than any specific implementation, Michael -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (FreeBSD) iEYEARECAAYFAkh16yEACgkQQv9rrgRC1JKtCgCgoMbmQ+clRgDvZBbHzLJxB0No EgYAn15Hk/jUcDnnahN0msD1J6+xUa48 =oIUJ -----END PGP SIGNATURE-----