FreeBSD Bugzilla – Attachment 14523 Details for
Bug 27284
new FAQ entry
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Help
|
New Account
|
Log In
Remember
[x]
|
Forgot Password
Login:
[x]
[patch]
file.diff
file.diff (text/plain), 1.26 KB, created by
Michael W Lucas
on 2001-05-12 14:30:00 UTC
(
hide
)
Description:
file.diff
Filename:
MIME Type:
Creator:
Michael W Lucas
Created:
2001-05-12 14:30:00 UTC
Size:
1.26 KB
patch
obsolete
>--- book.sgml-dist Sat May 12 09:01:32 2001 >+++ book.sgml Sat May 12 09:16:06 2001 >@@ -8866,6 +8866,37 @@ > </qandaentry> > > <qandaentry> >+ <question id="extra-named-port"> >+ <para>My named is listening on port 53 and some other >+ high-numbered port? Named is vulnerable a lot, have I >+ been hacked?</para> >+ </question> >+ >+ <answer> >+ <para>No. FreeBSD 3.0 and later use a version of named that >+ uses a random high-numbered port for outgoing queries. If >+ you want to use port 53 for outgoing queries, either to >+ get past a firewall or to make yourself feel better, you >+ can use the following in >+ <filename>/etc/namedb/named.conf</filename> >+ >+ <programlisting> >+ options { >+ query-source address * port 53; >+ }; >+ </programlisting> >+ >+ <para>You can replace the * with a single IP address if you >+ want to tighten things further.</para> >+ >+ <para>Congratulations, by the way. It's good practice to >+ read your <command>sockstat</command> output and notice >+ odd things.</para> >+ </answer> >+ </qandaentry> >+ >+ >+ <qandaentry> > <question id="bpf-not-configured"> > <para>Why do I get <literal>/dev/bpf0: device not > configured</literal>?</para>
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=14523">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 27284
: 14523