Re: Bind problems
From: Michael Richards (michael@fastmail.ca)
Date: 02/22/01
- Next message: Marc Rassbach: "Re: Bind problems"
- Previous message: Bruce A. Mah: "Re: Sudo version 1.6.3p6 now available (fwd)"
- Maybe in reply to: Michael Richards: "Bind problems"
- Next in thread: Marc Rassbach: "Re: Bind problems"
- Reply: Marc Rassbach: "Re: Bind problems"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: Cy.Schubert@uumail.gov.bc.ca From: "Michael Richards" <michael@fastmail.ca> Date: Thu, 22 Feb 2001 15:37:58 -0500 (EST)
Hi.
Within minutes of discovering that the version of bind was
compromised, it was shut down and an onsite person booted the system
from a disk and ran tripwire. Nothing odd. I've been monitoring via
the firewall and paying close attention to that machine and there is
nothing out of the ordinary going on with it. I have a feeling that
people were trying a linux specific exploit and that was merely
causing bind to crash.
-Michael
> I wouldn't be surprised if your system has already been hacked.
> 8.2.3-REL has fixed all known (to ISC) security holes. All
> previous versions of BIND are vulnerable. If I (taking my
> manager's hat off and putting my security officer's hat on) were
> you I'd do the prudent thing, which is to verify the system was
> not already hacked or otherwise consider the system suspect until
> I can prove it otherwise.
_________________________________________________________________
http://fastmail.ca/ - Fast Free Web Email for Canadians
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
- Next message: Marc Rassbach: "Re: Bind problems"
- Previous message: Bruce A. Mah: "Re: Sudo version 1.6.3p6 now available (fwd)"
- Maybe in reply to: Michael Richards: "Bind problems"
- Next in thread: Marc Rassbach: "Re: Bind problems"
- Reply: Marc Rassbach: "Re: Bind problems"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
