BIND Version check
David R. Conrad
David.Conrad at nominum.com
Tue Jun 20 16:50:07 UTC 2000
Hi,
> By revealing the version number, you also reveal the set of
> vulnerabilities of the server. If your server is visible to the
> Internet, you should disable this reporting
You should upgrade to a version of BIND that does not have the
vulnerabilities. Hiding the version information is simply a very poor form of
security through obscurity and would not deter any attacker with half a clue.
Rgds,
-drc
More information about the bind-users
mailing list