Slashdot Mirror

← Back to Stories (view on slashdot.org)

Apple Patches Kaminsky DNS Vulnerability

Posted by kdawson on from the cache-me-if-you-can dept.

Alexander Burke writes "Apple has just released Security Update 2008-005, which patches BIND against the Kaminsky DNS poisoning issue. 'This update addresses the issue by implementing source port randomization to improve resilience against cache poisoning attacks. For Mac OS X v10.4.11 systems, BIND is updated to version 9.3.5-P1. For Mac OS X v10.5.4 systems, BIND is updated to version 9.4.2-P1.' It also closes the script-based local privilege escalation vulnerabilities, the most common examples of which were ARDAgent and SecurityAgent, and addresses other less-publicized security issues as well." A few days back we noted Apple's tardiness in fixing their corner of this Net-wide issue.

5 of 89 comments (clear)

  1. They might have been slow... by PsyQo · · Score: 5, Funny

    They might have been slow with this patch, but boy does it look good!

    1. Re:They might have been slow... by 4D6963 · · Score: 4, Funny

      They might have been slow with this patch, but boy does it look good!

      No OS X 10.3 version. Less secure than the PF workaround. Lame.

      --
      You just got troll'd!
  2. Ahhhhhh by segedunum · · Score: 4, Funny

    The Slashdot effect that can make Apple actually patch something.

  3. Re:leopard and syslogd by whyloginwhysubscribe · · Score: 5, Funny

    It must be bad - even cuil has hits relating to this: http://www.cuil.com/search?q=leopard+syslogd

  4. Re:Good job apple by MightyYar · · Score: 5, Funny

    I don't think "tons" will get you very far when it comes to statistics.

    I don't know... have you ever priced out a ton of artists? Those things are really skinny and you really get your money's worth.

    The biggest rip-off is a ton of IT guys. You get like 1, maybe 1-1/2 in the whole damned load.

    --
    W..w..W - Willy Waterloo washes Warren Wiggins who is washing Waldo Woo.