[CentOS] BIND vulnerability

Wed Jul 29 19:10:56 UTC 2009
Chris Boyd <cboyd at gizmopartners.com>

On Jul 29, 2009, at 11:21 AM, Karanbir Singh wrote:

> yes, which is one of many reasons why a zone masters is usually  
> setup to
> not be publicly available.


The localhost 127.0.0.1 zone can also be used as an attack vector  
according to the folks on the DNS Ops list, so it's looking like  
pretty much every bind installation will need to be updated.

--Chris