On Jan 11, 2010, at 11:26 PM, Balanagaraju Munukutla wrote:
> Hi
>
> How to Disable the BIND version query feature in BIND 9.2.1.
>
> This is a bindvrs Vulnerability.
This is not a vulnerability, it's a feature. The vulnerability relates to
running BIND 9.2.1 - there are several very serious
Hiding your version accomplishes little.
a) attackers can using "fingerprinting" technology to determine your
BIND version even if you obscure it
b) attackers can just brute force all of the known attacks in the hopes
that you're vulnerable to at least one of them
The real solution is to upgr
Sometimes you have to do things like hiding your version just because it
came up on the security audit. It's a lot easier to make them shut up
by doing what they want than by explaining to them that what they want
is meaningless.
-Original Message-
From: bind-users-bounces+jlightner=water
Lightner, Jeff wrote:
> Sometimes you have to do things like hiding your version just because it
> came up on the security audit. It's a lot easier to make them shut up
> by doing what they want than by explaining to them that what they want
> is meaningless.
That said, if your "security audit" a
Well maybe...
As has been noted before folks like RedHat use a base BIND version then
backport security and bug fixes into it. The OP didn't say what he was
running on. I don't know that there are any supported RHEL versions
that use 9.2 but also don't know that there aren't.
In fact our secu
Nagaraj
One way to is to make a change in the named.conf. see below. This will
output what you supply instead of the version number.
change in named.conf
options {
version "Confidential";
};
Hope this is what you were looking for.
On Tue, Jan 12, 2010 at 9:51 AM, Kevin Darcy wrote
I've been running BIND 9.4.2-P2 since shortly after
it came out. I'm on Solaris 10, and two of my 6
machines are complaining about too many open
file descriptors. I've searched here, and around
and here is what I know:
running 'pfiles' on named on the two complaining
show 1023 files the ha
On Jan 12 2010, Patrick Larkin Jr wrote:
I've been running BIND 9.4.2-P2 since shortly after
it came out. I'm on Solaris 10,
With that combination, you would be much better off running
9.4.3 or later (at least 9.4.3-P3 for security reasons if
you have to stick to 9.4.x). This will use poll
On 12 Jan 2010, at 17:15, Lightner, Jeff wrote:
For BIND blocking
the version keeps the auditors from asking the question since they
don't
know base version let alone extended version.
Which tells more about the auditors than about the feature to do so
__
9 matches
Mail list logo
