Korea FreeBSD Users Group News, Internal, Projects, Home
Software, Support, Documentation

Re: root·Î ½ÇÇàµÇ´Â named°¡ ¾ÈÀüÇմϱî?


[ ³¯Â¥¼ø »öÀÎ ] [ ´ñ±Û¼ø »öÀÎ ] [ ÃÖ»óÀ§ »öÀÎ]

[ÀÌÀü ±Û] [´ÙÀ½ ±Û] [ÀÌÀü ´ñ±Û] [´ÙÀ½ ´ñ±Û] 

----- Original Message -----
From: "Kim Yong Seong" <maddie@golfro.com>
To: <questions@kr.freebsd.org>
Sent: Monday, September 02, 2002 1:42 AM
Subject: root·Î ½ÇÇàµÇ´Â named°¡ ¾ÈÀüÇմϱî?


> ¸Å¹ø ÀÌ»óÇÑ Áú¹®¸¸ Çؼ­ »ó´çÈ÷ Á˼۽º·´³×¿©.
>
> Á¦°¡ µµ¿Íµå¸±¸¸ÇÑ ºÐÀº ¸ÞÀϸµ¿¡ º°·Î ¾È°è½Å µí Çؼ­¸® ¤Ñ.¤Ñ
>
> ÀÌ°Ç ±×³É ±Ã±ÝÇѰǵ¥¿©.
>
> FreeBSD 4 stableÀ» ¾²°í Àִµ¥ bind ¹öÀüÀÌ 8.3.3ÀÌ´õ¶ó±¸¿©.
>
> ±×³É ´Ù½Ã ±î´Â °Íµµ ±ÍÂú°í (À̸¥¹Ù ±ÍÂ÷´ÏÁò ¤Ñ.¤Ñ)
>
> Çؼ­ ±×³É ±âº»À¸·Î Æ÷ÇÔµÈ bind¸¦ »ç¿ëÇÏ°í Àִµ¥¿ä.
>
> ÀÏÀü¿¡ bind 8¹öÀü ÀÚü¿¡ ¹®Á¦°¡ ÀÖ´Ù°í µé¾ú°Åµç¿ä. º¸¾È»óÀÇ ¹®Á¦·Î´Ù°¡...
>
> À¢¸¸ÇÑ security Guide¿£ ¶ÇÇÑ named¸¦ ¾²µÇ named¶ó´Â ½ÄÀÇ °èÁ¤À» ¸¸µé¾î
> µ¹¸®¶ó°í
>
> ÇÏ´õ±º¿©.(¸®´ª½º¿¡¼­) ±×·¡¼­ ÀÏÀü¿¡ ¸®´ª½º·Î ¿î¿µÇÒ ¶© named -u named·Î
> ½ÇÇà½ÃÄ×¾ú±¸¿ä.
>
> FreeBSD·Î Æ÷ÆÃÈÄ¿¡ Àü ±×³É /etc/rc.conf¿¡´Ù°¡ named_enable="YES"¸¸ µÎ¾ú
> ´Âµ¥¿©.
>
> ±×·¯´Ï root·Î ½ÇÇàÀÌ µÇ°í ÀÖ´õ±º¿©.
>

rc.conf¿¡ ´ÙÀ½À» Ãß°¡ÇÏ½Ã¸é µË´Ï´Ù.

named_flags="-u bind -g bind"

> ±×³É ÀÌ·¸°Ô Çصµ make world¸¸ ÀÚÁÖ ÇØÁÖ¸é ¹®Á¦°¡ ¾øÀ»±î¿ä?(Àü ÇÑ´Þ¿¡ ÇÑ
> ¹ø ÀÏ»ï¾Æ Çϱä Çϴµ¥¿©..)

¾à 1³â¿© Á¤µµ±îÁöµµ daemonÇÁ·Î±×·¥µéÀ» root±ÇÇÑÀ¸·Î ¿î¿µÇϴµ¥ º° °ÆÁ¤ÀÌ
¾ø¾ú´Âµ¥ ÃÖ±Ù¿£ Á¡Â÷ °³º°ÀûÀÎ °èÁ¤À¸·Î ½ÇÇàµÇ°í ÀÖ´Â ½ÇÁ¤ÀÔ´Ï´Ù.
¾Æ¹«·¡µµ ¹ö±×¾ø´Â ÇÁ·Î±×·¥À» ¸¸µé±â Èûµé±â ¶§¹®¿¡ ¾î¶² ÃÖ¼ÒÇÑ ¹æ¾î°¡ µÉ¼ö
ÀÖ°ÚÁö¿ä.
root·Î µ¿ÀÛÇÏ¸é ¹àÇôÁöÁö ¾Ê´Â ÇØÅ·½Ãµµ¿¡ ´ëÇÑ À§Çèµµ°¡ ³ô¾Æ Áö°ÚÁö¿ä.

>
> ¾ó¸¶Àü¿¡ ¸ÞÀϼ­¹ö°¡ °ø°ÝÀ» ´çÇÑ ÈÄ¿¡ Á» ¹Î°¨ÇØÁ®¼­...¤Ñ.¤Ñ
>
> Çб³¿¡ ÀÖ´Â ¼­¹ö¸¦ µÎ¾î´ë ¿î¿µÇÏ°í Àִµ¥ ¿äÁòµû¶ó °ø°ÝÀÌ ¸¹±º¿©.
>
> ±«·Ó½À´Ï´Ù. »¡¸® ¹æÈ­º®À» ¸¸µé´ø°¡ ÇؾßÁö ¿ø ¤Ñ.¤Ñ
>
> IDC¿¡ ÀÖ´Â ¼­¹öµµ °ø°ÝÀÌ ¿äÁò ¸¹¾ÆÁ³½À´Ï´Ù. ºê¶óÁú¾Ö°¡ ´ýºñ´õ±º¿©..
>
> ´Ùµé Á¶½ÉÇϼ¼¿ä.

¹æÈ­º®À» ¼³Ä¡µµ Áß¿äÇÏÁö¸¸ °¡Àå ¸ÕÀú ÇØ¾ß ÇÒ ÀÏÀº  patch¸¦ ºÎÁö·±È÷ ÇÏ°í
°¡´ÉÇÑ ¿ÜºÎ Á¢¼Ó port¸¦ ¾ø¾ÖÁÖ´Â °ÍÀÌ Áß¿äÇÕ´Ï´Ù.
DoS °ø°ÝÀÌ ¾Æ´Ñ buffer overflow °ø°ÝµéÀº ÆÐŶ ÇÊÅ͸µ Á¤µµÀÇ ¹æÈ­º®À¸·Î
¸·±â´Â
¾î·Æ½À´Ï´Ù. ¼ÕÀÌ ¸¹ÀÌ °¡±¸¿ä..

¹«Á¶°ÇÀûÀ¸·Î ÇÊÅ͸µÀ» °É°Ú´Ù´Â »ý°¢º¸´Ù´Â Á»´õ ü°èÀûÀÎ(?)  »ý°¢ÀÌ
ÇÊ¿äÇÕ´Ï´Ù.
¹«¾ùÀ» ¼­ºñ½º ÇÒ°ÍÀ̸ç,
À̰͵éÀÌ ¿ÜºÎ·Î open µÇ¾î¾ß ÇÏ´ÂÁö,
ip ÇÊÅ͸µÀ¸·Î ¾îµð±îÁö blockingÇÒ°ÍÀÎÁö,
¼­ºñ½º¿¡¼­ »ç¿ëÀÚ Á¢±Ù Á¤Ã¥Àº ¾î¶»°Ô °¡Á®°¡¾ß ÇÒ°ÍÀÎÁö...

»ç½Ç ºÎÁö·±È÷ patch¸¸ ²ÙÁØÈ÷ Çϼŵµ º° À§Ç輺Àº ¾ø½À´Ï´Ù.
¸·°¡ÆÄ½Ä DoS°ø°ÝÀÌ ¾Æ´Ñ ÀÌ»óÀº..

> --
> Please look and take part in KFUG FAQ: <http://www.kr.freebsd.org/FAQ-kr/>
> To Unsubscribe: send mail to majordomo@kr.FreeBSD.org
> with "unsubscribe questions" in the BODY of the message
>


--
Please look and take part in KFUG FAQ: <http://www.kr.freebsd.org/FAQ-kr/>
To Unsubscribe: send mail to majordomo@kr.FreeBSD.org
with "unsubscribe questions" in the BODY of the message
[ ³¯Â¥¼ø »öÀÎ ] [ ´ñ±Û¼ø »öÀÎ ] [ ÃÖ»óÀ§ »öÀÎ]
Copyright © 1998-2005 Korea FreeBSD Users Group.
All rights reserved. webmaster at kr.FreeBSD.org
$Date: 2002/09/30 23:02:22 $ 		Powered by FreeBSD