[18954] in bugtraq
Re: kyxspam: isc loses mind
daemon@ATHENA.MIT.EDU (Darren Coleman)
Fri Feb 2 05:53:29 2001
Mime-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
Message-Id: <NEEJJECAMHHMIFFMCJHMCEMNCCAA.daz@jpci.net>
Date: Thu, 1 Feb 2001 20:31:25 -0000
Reply-To: Darren Coleman <daz@JPCI.NET>
From: Darren Coleman <daz@JPCI.NET>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <0102010632410C.27656@smp.kyx.net>
> Someone, please, tell me there
> is an another
> alternative - because with the direction it's headed now, the
> Internet based on
> bind isn't looking like it's going to be a very good, reliable, or secure,
> network.
>
> regrets,
> --dr
We've all managed to survive using BIND for the past x years - I don't see
what has radically changed overnight. It's taken as given nowadays that
large, complex systems/software contain bugs, exploits, overflows.. etc etc.
The fact that "the majority" (I would hazard 90%+) of the DNS servers on the
Internet are using BIND, and there has been few *serious* incidents
(considering how much exposure the software gets, the considerable variances
in load it is placed under (ie. ISC's own rootserver serving over 272
million queries per day (by ISC's own estimations)), etc) goes to show that
as software goes, BIND is pretty solid.
Darren Coleman
JPC Infonet Ltd
daz@jpci.net
-------------------------------
Tel: +44 (0) 1225 351127
Mobile: +44 (0) 7967 648214
Fax: +44 (0) 8707 403436
-------------------------------
