-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Monday 26 March 2001 10:39, Christopher W. Aiken wrote:
http://www.cnn.com/2001/TECH/internet/03/23/linux.worm.idg/index.html
If you're running a bind earlier than 8.2.3 (final, not beta) then upgrade. I've seen six systems comprimised over the past few weeks, despite our proactive bind upgrading. It's funny how Red Hat doesn't support 6.1 anymore, I had to make my own RPM. Having hundreds of servers installed all over the world, some of them inaccessible (moving demos) is a pain... For any servers that are comprimised: reinstall from scratch. I'm serious. There is no other way to guarantee that a system is clean. We're recreating hard drives here and sending them out. SuSE 7.1 already has 8.2.1, and is *not* vulnerable. I'm really happy with SuSE's security efforts. I'm not sure about earlier versions, but the RPMs are already available. - -- James Oakley Engineering - SolutionInc Ltd. joakley@solutioninc.com http://www.solutioninc.com -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.4 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE6v1j8HYysNB5h3fIRArWrAKDJL4YC+VpoV8lIrMsg1Hl8E6rJ1wCgxjfA dzUfZ0Hu2sBOqt9nUbWz55g= =68kz -----END PGP SIGNATURE-----