Interactive Week: Users in a BINDFeb 22, 2001, 06:35 (5 Talkback[s])
(Other stories by Charles Babcock)
"Exposure to the problem is pervasive and the hazard of not fixing it is widely underestimated, experts said. Many users haven't yet taken advantage of the available upgrade."
"The program is called the Berkeley Internet Name Domain. It's open source code that links a name, such as ComeToUs.com, to a numeric Internet Protocol address on a Domain Name System server, which directs users to the right place. With a few exceptions, Web sites have such a server in front of them running BIND and directing traffic. The DNS server is typically outside the corporate firewall with minimal protection and, thus, is a frequent target for hackers. Hernan said 80 percent to 90 percent of the copies of BIND in use contain one of a dozen known vulnerabilities...."
"Because BIND is open source code, its functions are an open book to hackers looking for holes to exploit."