Best Practices Query Logging, On or Off ?

Ben McGinnes ben at
Mon Nov 22 07:01:25 UTC 2010

On 22/11/10 5:05 PM, Doug Barton wrote:
> On 11/21/2010 21:58, Ben McGinnes wrote:
>> On 22/11/10 7:12 AM, Doug Barton wrote:
>>> On Thu, 18 Nov 2010, CT wrote:
>>>> - BIND 9.3.6-P1-RedHat-9.3.6-4.P1.el5_4.2
>>> Really old, definitely needs upgrading.
>> That just means they're running RHEL 5 or CentOS 5.  If they have a
>> support contract with Red Hat, they may not be able to upgrade
>> without forfeiting their support and/or certification.  That
>> version will include back-ported security fixes.
> I get that actually. However it doesn't change my recommendation. 
> Even with security patches BIND 9.3 is past EOL, and incapable of
> doing modern DNSSEC.

Fair enough.  Red Hat probably need to find a middle ground for proper
updates of certain essential packages, like BIND, while working within
their upgrade path.  That, however, is a topic for another list.


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 259 bytes
Desc: OpenPGP digital signature
URL: <>

More information about the bind-users mailing list