Bind 4 and 8 Vulnerabilities 408
eecue writes "The world's most popular DNS package is once again vulnerable. Even the advisory says it's only a matter of time before worms are written.... just like a couple years ago. I guess this is why i run tinydns."
In other news (Score:5, Funny)
Come on, Bind 9 has been out for some time, so don't flip out! [realultimatepower.net]
Re:Escape (Score:5, Funny)
Re:Tinydns is a pain in the ass to install (Score:5, Funny)
BIND (Score:4, Funny)
I'm scared (Score:5, Funny)
Who needs DNS? (Score:2, Funny)
66.35.250.150 slashdot
Re:I'm scared (Score:5, Funny)
Cut the power cord and fill the closet with cement.
Re:I'm scared (Score:1, Funny)
djbtam -> Dan J. Bernstein's Tight Anus Mail.
That's right. Your mail server can be sealed up tighter than DJB's sphincter. This secure package is licensed under the "who gives a fuck" license, and is used by tens of users around the globe to keep their mail servers tight and puckered.
All servers that send and receive mail need to install the djbtam sender package, which is a collection of 15 small C programs that each run under a different user ID and in a different chroot jail. Just to remind you how stupid you are, you have to install each one by hand and the license forbids you from distributing an installer. The daemons communicate with one another by flashing lights on the keyboard. You must be present to type the correct flash pattern into your console. This extra level of security keeps hackers at bay. Note: if you need logging, just write down the light flashes as you copy them. See, this kind of bloated functionality is what keeps other mail servers insecure!
djbdhws -> Dan J. Bernstein's Dick Head Web Server.
Ahh, now here we have a truly modern, high-performance web server. It consists of a single, chroot'd process that receives HTTP requests, one at a time (multithreading breeds security holes), and then looks up each one in a table, and passes it to an executable. There's one executable for each web page, which has the content hard-coded into the program. Each one runs in a chroot jail, and under a different userID. Adding a web page to your site is so easy! Just compile a new executable for the page, and then create a new user id for it to run under.
Note, only HTTP GET is supported, no POST, no CGI, no dynamic content, no virtual hosts, and no logging (again, you should be smart enough to write a program that sits between the daemon and each page. kinda tough, since it runs chroot'd in an empty directory, but if you can't figure that out you're a shit-for-brains that deserves to be hacked).
DJB software - 121 satisfied users, won't you join our elite club?
Re:Copyright misconceptions (Score:1, Funny)
Re:Tinydns is a pain in the ass to install (Score:4, Funny)