Best Practices Query Logging, On or Off ?
Ben McGinnes
ben at adversary.org
Mon Nov 22 07:01:25 UTC 2010
On 22/11/10 5:05 PM, Doug Barton wrote:
> On 11/21/2010 21:58, Ben McGinnes wrote:
>> On 22/11/10 7:12 AM, Doug Barton wrote:
>>> On Thu, 18 Nov 2010, CT wrote:
>>>
>>>> - BIND 9.3.6-P1-RedHat-9.3.6-4.P1.el5_4.2
>>>
>>> Really old, definitely needs upgrading.
>>
>> That just means they're running RHEL 5 or CentOS 5. If they have a
>> support contract with Red Hat, they may not be able to upgrade
>> without forfeiting their support and/or certification. That
>> version will include back-ported security fixes.
>
> I get that actually. However it doesn't change my recommendation.
> Even with security patches BIND 9.3 is past EOL, and incapable of
> doing modern DNSSEC.
Fair enough. Red Hat probably need to find a middle ground for proper
updates of certain essential packages, like BIND, while working within
their upgrade path. That, however, is a topic for another list.
Regards,
Ben
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 259 bytes
Desc: OpenPGP digital signature
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20101122/4e1eb65f/attachment.bin>
More information about the bind-users
mailing list