Home > mailing lists

Re: Insecure DNS servers on PG infrastructure - Mailing list pgsql-www

From	Joshua D. Drake
Subject	Re: Insecure DNS servers on PG infrastructure
Date	July 25, 2008 15:26:08
Msg-id	1216999561.16378.7.camel@jd-laptop Whole thread Raw
In response to	Insecure DNS servers on PG infrastructure (Tom Lane <tgl@sss.pgh.pa.us>)
List	pgsql-www

Tree view

On Fri, 2008-07-25 at 11:02 -0400, Tom Lane wrote:
> I just noted that cvs.postgresql.org and svr1.postgresql.org are not
> running the latest bind release, which means that they are vulnerable to
> the DNS cache poisoning attack recently discovered by Dan Kaminsky.
> Vixie and co think this is a pretty big deal, so folks might want to
> update sooner rather than later.
>     http://www.kb.cert.org/vuls/id/800113

Dave and Magnus are on vacation. I believe the only other people that
would have access to those boxes are Stefan and Marc. I have pinged
Stefan.

Joshua D. Drake

-- 
The PostgreSQL Company since 1997: http://www.commandprompt.com/ 
PostgreSQL Community Conference: http://www.postgresqlconference.org/
United States PostgreSQL Association: http://www.postgresql.us/
Donate to the PostgreSQL Project: http://www.postgresql.org/about/donate

pgsql-www by date:

From: Tom Lane
Date: 25 July 2008, 15:04:34
Subject: Insecure DNS servers on PG infrastructure

From: Andrew Sullivan
Date: 25 July 2008, 15:41:06
Subject: Re: Insecure DNS servers on PG infrastructure

Re: Insecure DNS servers on PG infrastructure - Mailing list pgsql-www

Previous

Next