Re: [Full-Disclosure] SQL Slammer - lessons learned

From: David Howe (DaveHowe@gmx.co.uk)
Date: 02/06/03

Next message: Richard M. Smith: "[Full-Disclosure] ComputerWorld yanks Slammer worm terrorist story"

Previous message: Paul Schmehl: "RE: [Full-Disclosure] SQL Slammer - lessons learned"
In reply to: Niels Bakker: "Re: [Full-Disclosure] SQL Slammer - lessons learned"
Next in thread: Ron DuFresne: "Re: [Full-Disclosure] SQL Slammer - lessons learned"
Reply: Ron DuFresne: "Re: [Full-Disclosure] SQL Slammer - lessons learned"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: "David Howe" <DaveHowe@gmx.co.uk>
To: "Email List: Full Disclosure" <full-disclosure@lists.netsys.com>
Date: Thu, 6 Feb 2003 12:06:46 -0000

at Wednesday, February 05, 2003 6:32 PM, Niels Bakker
<niels=netsys@bakker.net> was seen to say:
> Please learn how the Internet works. BIND8 and up don't use 53 as
> source for outgoing queries anymore by default; you can override this
> in named.conf with
I don't think it really matters what port bind replies on - but it is
worth remembering that dns is udp, and queries could well come *from*
port 1434 on a client (so blocking replies)

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Next message: Richard M. Smith: "[Full-Disclosure] ComputerWorld yanks Slammer worm terrorist story"
Previous message: Paul Schmehl: "RE: [Full-Disclosure] SQL Slammer - lessons learned"
In reply to: Niels Bakker: "Re: [Full-Disclosure] SQL Slammer - lessons learned"
Next in thread: Ron DuFresne: "Re: [Full-Disclosure] SQL Slammer - lessons learned"
Reply: Ron DuFresne: "Re: [Full-Disclosure] SQL Slammer - lessons learned"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]