Hi,
at http://www.sans.org/y2k/lion_protection.htm one can read how to prevent Lion attack using ipchains. Is this already included in the SuSEfirewall 4.4?
Regards, Marko
Hi Marko,
the only efficient countermeasure is an update of the bind nameserver (See
http://www.suse.de/de/support/security/2001_003_bind8_txt.txt). If you
have an older version of the package installed and you can make sure
you're _not_ vulnerable to these attacks, then you should reinstall your
machine.
If you are not running a bind nameserver, you should be safe. Maybe you
want to install the most recent bind8 package (and don't run it) to make
sure nobody else does so and uses the old package from the CDs.
Regards,
Roman.
--
- -
| Roman Drahtmüller