>> So is it true that there is no way to make an existing bind server >> (without this patch) safe from this?
>A server that only serves authoritative data and doesn't recurse >is safe. The assertion takes place when retrieving data from the >cache, which an authoritative server never does. >Any server that does recursion, even if only in one view, should be >considered to be at risk. I just re-read this. If the assertion takes place when retrieving data from the cache, would setting cache size to 0 (do disable caching) avert this issue while still allowing recursion? -- Jack _______________________________________________ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
