VectorLinux

Please login or register.

Login with username, password and session length
Advanced search  

News:

Visit our home page for VL info. For support and documentation, visit the Vector Linux Knowledge Center or search the Knowledge Center and this Forum using the search box above.

Author Topic: DNS Vulnerability  (Read 1828 times)

brig001

  • Member
  • *
  • Posts: 31
DNS Vulnerability
« on: July 17, 2008, 03:56:39 am »

Hi, I'm quite new to Linux so excuse me if this is a dumb question...
Is Vector affected by the recent discovery of a flaw in the DNS system?
I found this http://www.slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.539239 so assume it is.  If so, is there an update available for it or can the Slackware update be applied?
Thanks.
Logged

M0E-lnx

  • Administrator
  • Vectorian
  • *****
  • Posts: 3277
Re: DNS Vulnerability
« Reply #1 on: July 17, 2008, 05:45:21 am »

I'm assuming that if we're running the same versions of the affected software, then most likely, we're inheriting the bug.

But to answer your question... you can safely install slackware packages on VL...

bigpaws

  • Vectorian
  • ****
  • Posts: 1872
Re: DNS Vulnerability
« Reply #2 on: July 17, 2008, 08:17:13 am »

The DNS vulnerability has been inherent for years.

This involves DNS servers. This will not affect your machine unless
you have a DNS server.

The update can be installed to update if you wish.

Bigpaws
Logged

rbistolfi

  • Packager
  • Vectorian
  • ****
  • Posts: 2323
Re: DNS Vulnerability
« Reply #3 on: July 17, 2008, 11:55:56 am »

As bigpaws pointed is not a critical update for us as a desktop distribution. However a patch will be available soon. For the record, the VectorLinux security updates are announced in the new packages section of this forum, the news section at the main website and through this RSS: http://vectorlinux.com/collections/security/RSS
Logged
"There is a concept which corrupts and upsets all others. I refer not to Evil, whose limited realm is that of ethics; I refer to the infinite."
Jorge Luis Borges, Avatars of the Tortoise.

--
Jumalauta!!

brig001

  • Member
  • *
  • Posts: 31
Re: DNS Vulnerability
« Reply #4 on: July 17, 2008, 01:20:39 pm »

Thanks for that.  I'm a bit confused, because I thought it was a problem with servers too, and yet Microsoft updated XP recently and broke everybody's firewalls.  I guess they must do things differently.  I'm not going to worry about it anyway.

Brian.

Edit:  Found this http://www.doxpara.com/ and it checked my ISPs DNS server and confirmed that it is safe.
« Last Edit: July 17, 2008, 01:24:27 pm by brig001 »
Logged