How can you run an authoritive DNS server if you don't let DNS requests through?
----- Original Message ----- From: "Tom Marshall" <[EMAIL PROTECTED]> To: "Jason Pappas" <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Sent: Friday, February 22, 2002 12:48 PM Subject: Re: Security breach?? > On Fri, Feb 22, 2002 at 09:32:34AM -0500, Jason Pappas wrote: > > There are many known hacks in BIND. I'd investigate that. > > > > - make sure you have the latest bind version. > > - chroot your bind install > > - suid you bind daemon > > - not give them any access to any system commands (ssh, telnet, etc) when > > you chroot > > - restrict connections at the firewall that can be made both from and to > > this DNS server > > - DENY TCP port 53. Kills bind sploits dead. > > -- > Unplug and get connected: http://www.seattlewireless.net/ >
