Path: csiph.com!news.uzoreto.com!news.etla.org!nntp-feed.chiark.greenend.org.uk!ewrotcd!usenet-its.stanford.edu!usenet.stanford.edu!not-for-mail From: Ted Mittelstaedt Newsgroups: comp.protocols.dns.bind Subject: Re: Debian/Ubuntu: Why was the service renamed from bind9 to named? Date: Thu, 23 Jul 2020 11:22:50 -0700 Lines: 26 Approved: bind-users@lists.isc.org Message-ID: References: <3E18C1A0C550C44DA156DA5DA8ECCC6AB60D2E7F@NICS-EXCH2.sbg.nic.at> <3E18C1A0C550C44DA156DA5DA8ECCC6AB60D2F10@NICS-EXCH2.sbg.nic.at> <2b5f4d05-b1a8-760c-3082-43843ed486fe@thelounge.net> <3E18C1A0C550C44DA156DA5DA8ECCC6AB60D2FA1@NICS-EXCH2.sbg.nic.at> <6091f715-d145-ab3f-d09b-5ec502575873@thelounge.net> <3E18C1A0C550C44DA156DA5DA8ECCC6AB60D30C8@NICS-EXCH2.sbg.nic.at> <5F11E663.1060805@ipinc.net> <7caf7a134151405d805b295dc0c09a68@mail.rrcic.com> <5F15D831.4030707@ipinc.net> <1D095F7E-63E5-4AC0-B7F9-DA3A703DA29C@isc.org> <5F1911E1.9070908@ipinc.net> <73d03461-92ef-b199-32c9-5674761f0e92@nixmagic.com> <75140a3f-ce3b-a5cd-33c5-bd231818fab4@simons-rock.edu> <5F19D57A.9090403@ipinc.net> NNTP-Posting-Host: lists.isc.org Mime-Version: 1.0 Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Trace: usenet.stanford.edu 1595528585 3504 149.20.1.60 (23 Jul 2020 18:23:05 GMT) X-Complaints-To: action@cs.stanford.edu To: bind-users@lists.isc.org Return-Path: X-Original-To: bind-users@lists.isc.org Delivered-To: bind-users@lists.isc.org User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:10.0) Gecko/20120206 Thunderbird/10.0 In-Reply-To: <75140a3f-ce3b-a5cd-33c5-bd231818fab4@simons-rock.edu> X-Spam-Status: No, score=0.0 required=5.0 tests=RCVD_IN_MSPIKE_H4, RCVD_IN_MSPIKE_WL,SPF_HELO_NONE,SPF_PASS autolearn=disabled version=3.4.2 X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on mx.pao1.isc.org X-BeenThere: bind-users@lists.isc.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: BIND Users Mailing List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-Mailman-Original-Message-ID: <5F19D57A.9090403@ipinc.net> X-Mailman-Original-References: <3E18C1A0C550C44DA156DA5DA8ECCC6AB60D2E7F@NICS-EXCH2.sbg.nic.at> <3E18C1A0C550C44DA156DA5DA8ECCC6AB60D2F10@NICS-EXCH2.sbg.nic.at> <2b5f4d05-b1a8-760c-3082-43843ed486fe@thelounge.net> <3E18C1A0C550C44DA156DA5DA8ECCC6AB60D2FA1@NICS-EXCH2.sbg.nic.at> <6091f715-d145-ab3f-d09b-5ec502575873@thelounge.net> <3E18C1A0C550C44DA156DA5DA8ECCC6AB60D30C8@NICS-EXCH2.sbg.nic.at> <5F11E663.1060805@ipinc.net> <7caf7a134151405d805b295dc0c09a68@mail.rrcic.com> <5F15D831.4030707@ipinc.net> <1D095F7E-63E5-4AC0-B7F9-DA3A703DA29C@isc.org> <5F1911E1.9070908@ipinc.net> <73d03461-92ef-b199-32c9-5674761f0e92@nixmagic.com> <75140a3f-ce3b-a5cd-33c5-bd231818fab4@simons-rock.edu> Xref: csiph.com comp.protocols.dns.bind:16022 On 7/23/2020 7:44 AM, charlie derr wrote: > > While it would still *technically* be security by obscurity, it would > seem to me that there's some value to this approach because access to > the compiled binary wouldn't necessarily be easy to obtain (especially > if the sysadmin provisioning the system takes extra efforts to *not* > share it with anyone). Or am i missing something? > I don't think there is much value because getting access isn't only done by buffer overflows and such on compiled programs. If you can find one then sure you might be able to get root access if the program you break into is running at root. But you can do an awful lot of damage by merely having unprivileged access. All you need is authentication credentials and regular users are horrible about keeping their credentials private. In fact the only place I can see a whole lot of value to is the manufacturers of cell phones since companies like Verizon lock the boot loaders as they do not wish owners of their phones to root them and get rid of annoying Verizon advertising and other suchlike. Rooting those devices is mainly done by breaking into security holes on the phone. Ted