Microsoft to patch zero-day DNS flaw

'gotitright' doesn't... have it right...: The vulnerability at issue in the DNS Server incidents was a flaw in the RPC-based *management endpoints* on DNS servers. These listened on high ports > 1024 that *nobody* behind a firewall should have open. It doesn't matter if your DNS Server is authoritative or not -- you have no business with RPC listening on it and exposed to the world. How many Unix admins who left their name server's port 111 open to the world would keep their jobs?; Posted by: SecurityGeek_z Posted on: 05/07/07 You are currently: a Guest | Members login | Terms of Use

Reply to Story Reply to Message

Subscribe to this discussion via Email or RSS

Agreed ITguy5678 | 05/07/07

Any given home user epcraig | 05/07/07

Firewalling DNS gotitright | 05/07/07

Not so fast... SecurityGeek_z | 05/07/07

Loverock, you are an idiot... SecurityGeek_z | 05/07/07

Agree w/ Everything Except rkuhn040172@... | 05/07/07

Drat, They Did It Again astro_z | 05/08/07

What do you think?

Dell on OpenManage Dell Dell Computer Corporation runs its business on thousands of Dell PowerEdge ... Download Now
Recovery Manager for Active Directory ScriptLogic Recovery Manager for Active Directory? offers an easy-to-use solution for ... Download Now
Driving Business Agility through SOA Connectivity & Integration Whitepaper from IBM IBM In this whitepaper, you will learn how to work smarter so you can solve ... Download Now

Thought-provoking progressive ideas on diverse topics that intersect with technology, business, and life, and matter to the world at large. Visit SmartPlanet
More from IBM
Innovate your business' process model, play against the market, compete against others on our scoreboards and WIN! Try INNOV8 2.0: A BPM Simulator
Enabling Real-World Business Transformation through IBM Service Management Read the EMA Analyst Report