Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2002:001: bind Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the bind package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2002:001 (bind).
There are some insecure permissions on configuration files and executables with
the bind 9.x packages shipped with Mandrake Linux 8.0 and 8.1. This update
provides stricter permissions by making the /etc/rndc.conf and /etc/rndc.key
files read/write by the named user and by making /sbin/rndc-confgen and
/sbin/rndc read/write/executable only by root.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2002:001
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.