PLEASE HELP ME!!! ; enhance BIND security mechanism

PLEASE HELP ME!!! ; enhance BIND security mechanism

Post by Medec » Fri, 05 Feb 1999 04:00:00



hi everyone...

i have my own dns server...using linux redhat 5.2...and using BIND 8.1.2.. i
want to enhance the security mechanism;

a) internal additional data checking,
b) secure_zone TXT records
c) xfernets directive
d) bogusns
e) options no-recursion and options no-fetch-glue

i want to know which mechanism is the best to develope especially using C
programming...can someone send me the sample of the programming or anything
else that i can use to develope my security mechanism....or the me the web
that provide all this kind developement

that's all for now...hope to hear from u all as soon as possible

 
 
 

1. SECURITY: NSA Security-enhanced Linux updated

The SELinux web site <http://www.nsa.gov/selinux/> including the mail
list archive has been updated. The example policy has been updated with
enhancements and cleanups.  A number of bugs have been fixed in the
SELinux module.  The updated module is available for the ia32 2.4.20
Linux kernel.   The updated module is also available for both the
mainline 2.5.66 Linux kernel and an LSM patched 2.5.66 Linux kernel.
The new mainline module also includes work in preparation for a new
SELinux API.  Finally, a port of SELinux to the arm 2.4.19 kernel is
also now available.

Security-enhanced Linux incorporates a strong, flexible mandatory
access control architecture into the major subsystems of the Linux
kernel. The system provides a mechanism to enforce the separation of
information based on confidentiality and integrity requirements.  This
allows threats of tampering and bypassing of application security
mechanisms to be addressed and enables the confinement of damage that
can be caused by malicious or flawed applications.  The SELinux web
site <http://www.nsa.gov/selinux/> contains background information,
documentation, source code, and archives for the selinux mailing-list.

--

Secure Systems Research Office
National Security Agency

##########################################################################

# PLEASE remember a short description of the software and the LOCATION.  #
# This group is archived at http://stump.algebra.com/~cola/              #
##########################################################################

2. trouble with server parse HTML on #echo and #exec

3. NFS Exports

4. lost+found : any good?

5. Ultrastor 14F Patches

6. Redhhat Bind 9 (rpm bind-9.2.1-1.7x.2) Security issue not fixed ?

7. Security Mechanism Default