Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Does blocking TCP DNS packets keep your Bind safe?

From: agetchel () kde state ky us
Date: Mon, 19 Mar 2001 15:23:13 -0500
Also re: BIND vulnerabilities, let's not forget that they are also 
going to be afflicted with the "popularity handicap" which is to say, 
since there are probably 100x more servers out there in the world 
running BIND, the likelihood of seeing or finding bugs on the 
platform, and the level of interest for people to design exploits are 
both going to be way higher than for a relatively scarce product like 
djbdns.


        But because there is probably 100x more servers running BIND out
there in the wild than any other DNS server software, this also means that
exploits will be fixed much faster and problems will be brought to the
public's eye much more quickly as well.  It's a tradeoff really.  You know,
kind of like Microsoft and bug fixes... oh wait... sorry... bad example. =)

Thanks,
Abe

Abe L. Getchell - Security Engineer
Division of System Support Services
Kentucky Department of Education
Voice   502-564-2020x225
E-mail  agetchel () kde state ky us
Web     http://www.kde.state.ky.us/
_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: