Resolver library question
Cinense, Mark
macinen at sandia.gov
Thu Sep 5 15:55:41 UTC 2002
I thougt that I read that somewhere that BIND 9 does not have libbind
configured by default...
here...
http://www.isc.org/products/BIND/bind-security.html
under "libbind buffer overflow"
(Disabled by default in BIND 9, enabled if you added --enable-libbind to the
configure statement)
Mark Cinense
-----Original Message-----
From: Joseph S D Yao [mailto:jsdy at center.osis.gov]
Sent: Thursday, September 05, 2002 9:43 AM
To: Cinense, Mark
Cc: Chuck Sterling; comp-protocols-dns-bind at isc.org
Subject: Re: Resolver library question
On Thu, Sep 05, 2002 at 07:15:13AM -0600, Cinense, Mark wrote:
> If you are running BIND 9.x.x, and did not compile the resolver libraries,
> then it is not vulenrable. Is this correct?
I guess I did assume that the original questioner had installed the
'named', but not the resolver libraries, since that has in the past
often been the case for people who did the default install. If this
has changed for BIND 9, I may have missed that.
--
Joe Yao jsdy at center.osis.gov - Joseph S. D. Yao
OSIS Center Systems Support EMT-B
-----------------------------------------------------------------------
This message is not an official statement of OSIS Center policies.
More information about the bind-users
mailing list