BIND9, ISS and AUTHORS.BIND
Bischof, Ralph
Ralph.Bischof at nasa.gov
Tue Feb 7 19:23:41 UTC 2006
> -----Original Message-----
> From: Bill Larson [mailto:wllarso at swcp.com]
> Sent: Tuesday, February 07, 2006 11:12 AM
> Well, you can always create a "bind" zone of type CH and
> populate this with information that will satisfy the ISS
> scanner. A very good example of this can be found in the
> "Secure BIND Template" at
> http://www.cymru.com/Documents/secure-bind-template.html.
> This can hide both the "version.bind" and "authors.bind" information.
Sweet. Thank you.
> Does hiding the version of BIND
> that is running make any difference in the security of the
> system?
...
> My opinion is that many (not all) computer security
> "professionals" simply follow a set of check lists without
> understanding the underlying reasons why the check lists were created.
I believe you have crystal balled into my environment.
I appreciate your reply, Bill.
Thank you,
--
Ralph F. Bischof, Jr.
Any opinion within this communication is not necessarily that of NASA.
PGP Key - http://pgpkeys.hq.nasa.gov
More information about the bind-users
mailing list