> I know this has been discussed, but as a neophyte web admin, how do I patch
> for this? We have a 10.4.11 PPC server which is hosting our 3 sites and Apple
> hasn't come up with a security patch. Anyone have any ideas? The link goes to
> the vulnerability but I'm not sure where to go with this or how to fix it.
To fix this, the best way is to compile your own BIND software. This will
require the Xcode tools on your server; then you can download the source
code to your server from the ISC.org page, compile it yourself and disable
the Apple-provided BIND to use your local version.
Longer term, at this point, I would recommend moving any Internet-facing
servers to another operating system. It's noticeable that Red Hat and SUSE
both had updates available the day CERT published the existence of that
vulnerability, as did Microsoft. Apple's botched response to this serious
problem stands out from the pack, and not in a good way.
--
Dave Pooser, ACSA
Manager of Information Services
Alford Media http://www.alfordmedia.com
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Macos-x-server mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/macos-x-server/email@hidden
This email sent to email@hidden
