Mailing Lists: Apple Mailing Lists
Image of Mac OS face in stamp
 
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: US-CERT Vulnerability Note VU#800113


On Jul 24, 2008, at 2:00 PM, Kat Lehman wrote:

Hi Everyone,

I know this has been discussed, but as a neophyte web admin, how do I patch for this? We have a 10.4.11 PPC server which is hosting our 3 sites and Apple hasn't come up with a security patch. Anyone have any ideas? The link goes to the vulnerability but I'm not sure where to go with this or how to fix it.

Since you proclaim yourself as a neophyte, I will start with a basic question... Does this server provide DNS services, or is it just a web server (e.g. just apache/mysql/php)?  If all it does is host web pages there is not much need for immediate panic as this affects DNS.  

Next up is if it does provide DNS services, does it provide DNS recursion for any random internet user?  i.e. can I as a user on the internet hit your servers IP address and ask it where www.google.com resolves to?  If the answer to that is 'No' also you can *probably* wait things out till apple gives a patch.  If the answer is yes, this effects you.

Now if your server *does* answer recursive queries (and is caching them), but only internal ones it comes to the issue of do you trust your users not to exploit your server?

And finally if you have a DNS server that answers recursive queries (and is caching them) for joe internet user, and your internal users (also known as a 'bad DNS setup') you should look into getting a new DNS server in place, or use some third party DNS hosting, or use any of the work arounds listed on the link you posted.

Now what is the real problem with all this is if your ISP's DNS server, or any of the DNS servers it uses get poisoned - then your kind of stuck.  You could for now forward your DNS queries to opendns.com if your worried your ISP's DNS servers will/have been poisoned.


This link may be of help to you, http://docs.info.apple.com/article.html?path=ServerAdmin/10.4/en/c3ns4.html
 _______________________________________________
Do not post admin requests to the list. They will be ignored.
Macos-x-server mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/macos-x-server/email@hidden

This email sent to email@hidden
References: 
 >US-CERT Vulnerability Note VU#800113 (From: Kat Lehman <email@hidden>)



Visit the Apple Store online or at retail locations.
1-800-MY-APPLE

Contact Apple | Terms of Use | Privacy Policy

Copyright © 2007 Apple Inc. All rights reserved.