ispCP - Board - Support
Bind security update - Printable Version

+- ispCP - Board - Support (http://www.isp-control.net/forum)
+-- Forum: ispCP Omega Support Area (/forum-30.html)
+--- Forum: System Setup & Installation (/forum-32.html)
+--- Thread: Bind security update (/thread-14100.html)



Bind security update - kouga - 06-01-2011 07:09 PM

hi all,

According to ISC, security problem has been found in BIND.
My ispCP server is on CentOS 5, which uses Bind 9.3.4. Very old one.
I'm planning to upgrade it to Bind97, but I want to make sure that
ispCP will work fine with Bind97, before I remove Bind 9.3.4.

Someone give me an answer please!!

Here's the ISC's announcement.
https://www.isc.org/software/bind/advisories/cve-2011-1910


RE: Bind security update - aseques - 06-01-2011 07:54 PM

(06-01-2011 07:09 PM)kouga Wrote:  hi all,

According to ISC, security problem has been found in BIND.
My ispCP server is on CentOS 5, which uses Bind 9.3.4. Very old one.
I'm planning to upgrade it to Bind97, but I want to make sure that
ispCP will work fine with Bind97, before I remove Bind 9.3.4.

Someone give me an answer please!!

Here's the ISC's announcement.
https://www.isc.org/software/bind/advisories/cve-2011-1910
Bind 9.3 is unnafected (too old Tongue), bind 9.7 should be supported since it's the default in debian squeeze wich is also a supported release.
Also, if you disable recursion your server shouldn't be on risk, you just have to add:
recursion no;
on /etc/bind/named.conf.options