> So is it true that there is no way to make an existing bind server > (without this patch) safe from this?
A server that only serves authoritative data and doesn't recurse is safe. The assertion takes place when retrieving data from the cache, which an authoritative server never does. Any server that does recursion, even if only in one view, should be considered to be at risk. -- Evan Hunt -- e...@isc.org Internet Systems Consortium, Inc. _______________________________________________ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
