<<< Date Index >>>     <<< Thread Index >>>

Re: [ga] Bindv9/DNS updated security Vulnerabilities - Sans/FBI's Top 20



On Thu, Oct 09, 2003 at 11:24:10PM -0700,
 Jeff Williams <jwkckid1@xxxxxxxxxxxxx> wrote 
 a message of 21 lines which said:

>   In light of the site finder mess, one also may want
> to consider the below listed more serious problem...
> 
> See: http://www.sans.org/top20/oct02.php#U9  - Read completely

Excellent reading for every name server administrator. I would add
something: do not put all your eggs in the same basket (before BIND,
sendmail had a quasi-monopoly on one critical function and many
problems came from that before Postfix took a part of the
market). Excellent free software like nsd
<URL:http://www.nlnetlabs.nl/nsd/index.html> or PowerDNS
<URL:http://www.powerdns.com/> can replace BIND for some of its
functions.