We getting a centralized IT push to install the university’s sophos product on all servers, including linux:
https://docs.sophos.com/central/Customer/help/en-us/central/Customer/concepts/SPLCommandLineOptions.html We have three systems running bind: a primary and two secondaries; all are running on Rocky Linux 8 minimal system (basically our VM linux template is a stock minimum install), and we added nothing more than what we needed to get bind (and on the master dhcpd as it’s also our dhcp server) working; communication is via ssh and that’s it, no web service, external mounts of any kind I’m thinking that there's no real avenue for malware to get on this system (beyond some sort of 0-day in the software that is running…) so it’s probably not necessary; but if we get told we have to, does anyone foresee any issues with it interfering with DNS? -- Bruce Johnson University of Arizona College of Pharmacy Information Technology Group Institutions do not have opinions, merely customs -- Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
