Network World
Monday, December 1, 2008
DNSstuff.com
Get information about your IP
IP Information
50+ On-demand DNS and network tools

Community

NetworkWorld.com > Home > RE: Users urged to patch serious hole in BIND 9 DNS server

Navigation

RE: Users urged to patch serious hole in BIND 9 DNS server

Submitted by cricket on Wed, 07/25/2007 - 11:57am

In addition to upgrading to the newly patched versions of BIND, administrators should make sure their name servers restrict access to recursion.

Re: Users urged to patch serious hole in BIND 9 DNS server.

It's much easier to exploit this vulnerability on a name server that will process arbitrary recursive queries, since you can induce it to query a name server under your control or cause it to look up a domain name you want to spoof.

For more information on limiting access to recursion, may I suggest the two links at the bottom of our DNS Resources page, http://www.infoblox.com/library/dns_resources.cfm

Reply

The content of this field is kept private and will not be shown publicly.
  • Allowed HTML tags: <a> <em> <strong> <i> <b> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd> <blockquote> <br /> <br> <p>
  • Lines and paragraphs break automatically.
  • You can use BBCode tags in the text.
  • Web page addresses and e-mail addresses turn into links automatically.

More information about formatting options

CAPTCHA
This question is for testing whether you are a human visitor and to prevent automated spam submissions.

Advertisement: