At first, I saw nothing good about the media overreacting to a root hole in BIND. Granted, it is a serious issue, but how many root holes has there been in BIND now? But since everyone is doing coverage on this new hole, it seems that many maintainers have been getting out patches for their OS's BIND package quickly, so as not to seem lax on their security. Maybe more holes should be publicized like this, the maintainers would release fixes quicker. The down side to this is that Microsoft will probably take this and run with it, try to use it as an example of how insecure Unix is because those not informed will hear Microsoft saying that Unix is insecure, and have no idea of the insecurities of WinNT (which hasnt been quite as openly publicized). Just my $0.02.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/articles/144/4517#4517