[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

[linux-security] Re: Security problems in bind -- persisting?

From: Rik van Riel <riel nl linux org>
To: Antonomasia <ant notatla demon co uk>
Cc: linux-security redhat com
Subject: [linux-security] Re: Security problems in bind -- persisting?
Date: Fri, 14 Jan 2000 14:52:21 +0100 (CET)

On Fri, 14 Jan 2000, Antonomasia wrote:

> Does anyone know adverse effects (beside added net traffic) of
> simply not running bind ?

Bind will have to run _somewhere_ so a safe installation of it
is needed anyway (prepackaged in RPM, if possible).

If you're using it for caching only, you can put something like
this in /etc/named.conf:

options {
	listen-on 127.0.0.1;
}

This will make sure that only the machine itself can use bind,
so remote attacks become impossible.

See http://www.isc.org/ for the full documentation on bind.

regards,

Rik
--
The Internet is not a network of computers. It is a network
of people. That is its real strength.

References:
- [linux-security] Re: Security problems in bind -- persisting?
  - From: Antonomasia

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]