|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Len Conrad (LConrad
Go2France.com)Date: Wed Jan 02 2002 - 09:14:30 CST
>Always (for performance reasons)- however it's important to ensure that
>the DNS isn't exploitable- after WU-FTP, BIND is pretty high on the list of
>*nix exploit vectors
This has not been true for over a year for ISC BIND8, and ISC BIND9 hasn't
yet been compromised.
Check with SANS where the put BIND at the top of risks, BUT at least they
qualify that warning by saying it's the old versions of BIND that are still
running years after they were exploited.
Len
http://MenAndMice.com/DNS-training
http://BIND8NT.MEIway.com : ISC BIND 8.2.4 for NT4 & W2K
http://IMGate.MEIway.com : Build free, hi-perf, anti-abuse mail gateways
-
To unsubscribe, send mail to majordomopostfix.org with content
(not subject): unsubscribe postfix-users
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]