On Sat, Feb 19, 2011 at 9:51 AM, Lamar Owen <lowen at pari.edu> wrote: > > If your server was really hacked, I'd start from scratch, and set the new one up more defensively. THANKS for your input; there exists a consensus, so that's what will be done (replace 4.8 with 5.x). Troy says Fermi (a great target for the miscreants/actors) runs stock BIND as it appears in RHEL/CentOS/SL, so, to be redundant, what is good enough for the national labs is good enough for us. Joe won't be happy with us, but we need to be pragmatic.