<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">

<html>

<head>

  <meta content="text/html;charset=ISO-8859-1" http-equiv="Content-Type">

</head>

<body bgcolor="#ffffff" text="#000000">

If you're running a public DNS server or a DNS server for your LAN

clients then these lines are an extremely good idea...<br>

<br>

P.<br>

<br>

<br>

Randal, Phil wrote:

<blockquote

 cite="mid:7EF0EE5CB3B263488C8C18823239BEBA0430DC31@HC-MBX02.herefordshire.gov.uk"

 type="cite">

  <pre wrap="">Have you made sure that in named.conf there are no

  query-source    port 53;        

  query-source-v6 port 53;

lines?

Cheers,

Phil

--

Phil Randal

Networks Engineer

Herefordshire Council

Hereford, UK

-----Original Message-----

From: <a class="moz-txt-link-abbreviated" href="mailto:mailscanner-bounces@lists.mailscanner.info">mailscanner-bounces@lists.mailscanner.info</a>

[<a class="moz-txt-link-freetext" href="mailto:mailscanner-bounces@lists.mailscanner.info">mailto:mailscanner-bounces@lists.mailscanner.info</a>] On Behalf Of Jason

Ede

Sent: 10 July 2008 11:15

To: MailScanner discussion

Subject: RE: Watch it: Multiple DNS implementations vulnerable to

cachepoisoning

I've patched some servers and they're showing good, but on one behind a

firewall its still showing as poor despite the update being run... Its

running Centos5.1

Jason

  </pre>

  <blockquote type="cite">

    <pre wrap="">-----Original Message-----

From: <a class="moz-txt-link-abbreviated" href="mailto:mailscanner-bounces@lists.mailscanner.info">mailscanner-bounces@lists.mailscanner.info</a> [<a class="moz-txt-link-freetext" href="mailto:mailscanner">mailto:mailscanner</a>- 

<a class="moz-txt-link-abbreviated" href="mailto:bounces@lists.mailscanner.info">bounces@lists.mailscanner.info</a>] On Behalf Of shuttlebox

Sent: 10 July 2008 09:42

To: MailScanner discussion

Subject: Re: Watch it: Multiple DNS implementations vulnerable to 

cache poisoning

On Thu, Jul 10, 2008 at 3:54 AM, Ken A <a class="moz-txt-link-rfc2396E" href="mailto:ka@pacific.net">&lt;ka@pacific.net&gt;</a> wrote:

    </pre>

    <blockquote type="cite">

      <pre wrap="">They are probably not random enough. You can look at them with

      </pre>

    </blockquote>

    <pre wrap="">netstat or

    </pre>

    <blockquote type="cite">

      <pre wrap="">lsof -i

      </pre>

    </blockquote>

    <pre wrap="">OK, it's the standard deviation that is key to the result. Unique 

ports but all in a row for example is of course not good.

I have now patched one server and it shows GOOD with a high std dev.

/peter

--

Robert Benchley  - "Drawing on my fine command of the English 

language, I said nothing."

--

MailScanner mailing list

<a class="moz-txt-link-abbreviated" href="mailto:mailscanner@lists.mailscanner.info">mailscanner@lists.mailscanner.info</a>

<a class="moz-txt-link-freetext" href="http://lists.mailscanner.info/mailman/listinfo/mailscanner">http://lists.mailscanner.info/mailman/listinfo/mailscanner</a>

Before posting, read <a class="moz-txt-link-freetext" href="http://wiki.mailscanner.info/posting">http://wiki.mailscanner.info/posting</a>

Support MailScanner development - buy the book off the website!

    </pre>

  </blockquote>

  <pre wrap=""><!---->--

MailScanner mailing list

<a class="moz-txt-link-abbreviated" href="mailto:mailscanner@lists.mailscanner.info">mailscanner@lists.mailscanner.info</a>

<a class="moz-txt-link-freetext" href="http://lists.mailscanner.info/mailman/listinfo/mailscanner">http://lists.mailscanner.info/mailman/listinfo/mailscanner</a>

Before posting, read <a class="moz-txt-link-freetext" href="http://wiki.mailscanner.info/posting">http://wiki.mailscanner.info/posting</a>

Support MailScanner development - buy the book off the website! 

--

MailScanner mailing list

<a class="moz-txt-link-abbreviated" href="mailto:mailscanner@lists.mailscanner.info">mailscanner@lists.mailscanner.info</a>

<a class="moz-txt-link-freetext" href="http://lists.mailscanner.info/mailman/listinfo/mailscanner">http://lists.mailscanner.info/mailman/listinfo/mailscanner</a>

Before posting, read <a class="moz-txt-link-freetext" href="http://wiki.mailscanner.info/posting">http://wiki.mailscanner.info/posting</a>

Support MailScanner development - buy the book off the website!

  </pre>

</blockquote>

</body>

<br />--

<br />This message has been scanned for viruses and

<br />dangerous content by the 

<a href="http://www.inexcom.co.uk/"><b>Inexcom</b></a> system scanner,

<br />and is believed to be clean.

<br />Advanced heuristic mail scanning server [-].

</html>