| Javascript Feeds RSS Feed Security Dashboard | SearchSecurity.com |
|
Paul Vixie and David Conrad on BINDv9 and Internet Security In this interview, Paul Vixie and David Conrad talk about the Internet Software Consortium, the changes in the latest major version of bind, the security features designed into it, and the future of Internet security.
By Dave Wreski, 03/10/2004
|
|
Securing a BIND Internet Name Server The goal of this document is to discuss general name server security. However, in order to provide useful examples we have chosen to focus on BIND since it is the most commonly used software for DNS servers.
By Allen Householder, 03/03/2004
|
|
Secure Installation of BIND This document was written using BIND 8 (specifically 8.2.2-p5). It is possible that some of it's recommendations will not work for any version earlier than 8.2.2-p5. It would also be wise to not use any versions of BIND earlier than 8.2.2-p5. The reasoning behind this statement is that BIND has had security issues that result in total compromise of machines that host it, and Denial of Service attacks that prevent the name server from answering queries. At the time of writing there were seven known vulnerabilities in pre 8.2.2 versions of BIND, and a vulnerability in the way DNS is deployed that affects BIND 8.2.2 when you change your nameserver from one ip address to another.
By Holt Sorenson , 02/21/2004
|
