bind 4.9.8-T1B is ready for public testing

Paul A Vixie vixie at mfnx.net
Tue Dec 26 18:48:04 UTC 2000


-----BEGIN PGP SIGNED MESSAGE-----

as promised some years ago, bind4 has been treated as dead code in favour
of bind8 and now bind9.  however, also as promised, whenever a particularly
aggregious security flaw is uncovered in bind4, new releases will be made.

ftp://ftp.isc.org/isc/bind/src/DEPRECATED/4.9.8-T1B/bind-498-t1b.tar.gz
ftp://ftp.isc.org/isc/bind/src/DEPRECATED/4.9.8-T1B/bind-498-t1b.tar.gz.asc

MD5 (bind-498-t1b.tar.gz) = 18a561663c653bdb052a794b59d6ab6f
MD5 (bind-498-t1b.tar.gz.asc) = e5afad071ba8104d6baf652d51410051

4216928197 1871578 bind-498-t1b.tar.gz
2790214393 284 bind-498-t1b.tar.gz.asc

817. [security] do not call syslog() with unbounded network data.

816. [port]     main() is an int.

815. [security] pull in several bind8 protocol handling fixes.

814. [support]  turn off XSTATS by default

813. [port]     add __printflink(), __scanflike() to compat/include/sys/cdefs.h

disclaimer: bind4 is dead code, and has a number of other security defects
besides those being fixed in 4.9.8, and should not be run on any name
server which is connected to the internet or connected to a private network
which has more than one user.

-----BEGIN PGP SIGNATURE-----
Version: 2.6.2
Comment: Processed by Mailcrypt 3.5.5, an Emacs/PGP interface

iQCVAwUBOkjn0W2DN4pRurLtAQHCGgP/Ylt7UgniVdph1IzLTBN/RzTYeMNOcGrZ
b2VrE78kej/Vhd9YC2gFyHMJMxk/vNTxYmXPELFmrxyRdPHyzwV+5MyCAt6EpN1+
c3/0NPavauVr2YSRXsVYVyoeAIrTu1qVcqxFigpgW8e62LhPAWFGTj2wEZb/+Bhg
n7DIsMmDAuQ=
=LdHZ
-----END PGP SIGNATURE-----



More information about the bind-announce mailing list