On Tue, Feb 14, 2012, Vitali wrote: > On Tue, Feb 14, 2012 at 10:09 AM, Peter van Oord van der Vlies
> > Why replacing bind ? > https://www.isc.org/software/bind/advisories/cve-2012-1033 Bad CVE choice... That's a design issue in DNS, not a vulnerability in BIND. And if you want to throw CVEs around: Unbound VU#209659 CVE-2011-4528 Unbound denial of service vulnerabilities from nonstandard redirection and denial of existence But at least it seems to have less problems than bind(?)