Merit Network
Can't find what you're looking for? Search the Mail Archives.
  About Merit   Services   Network   Resources & Support   Network Research   News   Events   Home

Discussion Communities: Merit Network Email List Archives

North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: Reasons why BIND isn't being upgraded

  • From: Patrick Greenwell
  • Date: Fri Feb 02 11:54:38 2001

On 1 Feb 2001, Paul Vixie wrote:

> 
> Simon@wretched.demon.co.uk (Simon Waters) writes:
> 
> > The ISC.ORG web site recommends leaving the BIND version string
> > unchanged to assist in troubleshooting. 
> > 
> > I remain unconvinced that showing the version string helps much.
> 
> it helped you with your survey, didn't it?
> 
> hiding it doesn't help at all.  people who want to know if you're vulnerable
> and to what have tools to find out.
> 
> hiding it DOES however make it harder for people (including network owners)
> to do surveys.

By the same token one might argue that atempting to hide vunerabilities 
to those paying you for "early warnings" doesn't help at all.

Just something to consider.






Discussion Communities


About Merit | Services | Network | Resources & Support | Network Research
News | Events | Contact | Site Map | Merit Network Home


Merit Network, Inc.