On Thu, 2003-09-18 at 06:26, christopher neitzert wrote: > Yes, this is sickening. > > There are quite a few evil ramifications of this including XSS exploits > in IE: IF you've got Internot Exploder handy try this: > > http://";alert('verislime');".net > >
Please give more detail > ISC has released a patch and there are hundreds of other patches out > there for most server setups. Every patch I have tried so far has been buggy, including ISC's patch. There is already talk of a newer version of ISC's patch. The first one for 9.2.2 on Slashdot is slow. The phirate patch crashes bind after a while. ISC's causes NS record lookups for non-cached domains to fail. If you do a A record lookup for to get the domain cached, then the NS record lookup works. Someone on the bin9 users mailing list said it had to do with some gtld servers answering with an old format and the patch assumes the new format. > > There are even sites that list patched DNS servers. (which I'm sure will > be posted here sooner or later *cough* fo0bar) > I have patched six servers, and have more to do. _______________________________________________ RLUG mailing list [EMAIL PROTECTED] http://www.rlug.org/mailman/listinfo/rlug
