Re: Response Policy Zone returns servfail for time.in Trigger

ason why are you trying to rewrite the answers. RPZ does try to resolve the name first, and it fails, so there?s nothing to rewrite. See the documentation https://bind9.readthedocs.io/en/v9.18.13/reference.html#namedconf-statement-response-policy on qname-wait-recurse and break-dnssec to turn

Query about tkey-gssapi-keytab and secure updates

here additional resources explaining overal GSS-TSIG handling? Reading C-code is not really my cup of cofee. === Our test plan: Merging to MS AD environments to single ISC BIND

Query about tkey-gssapi-keytab and secure updates

Hello Bind users, Trying to extend my understanding about tkey-gssapi-keytab statement and possibility to use multiple principal names in single keytab file The use case is simple: Merging to MS AD environments to single ISC BIND DNS server with secure updates using update-policy For testing

Re: Debugging Information Lacking?

Intelligent Computing Solutions Midwest Internet Exchange The Brothers WISP - Original Message - From: "Lee" To: isc-bind-us...@ics-il.net Cc: bind-users@lists.isc.org Sent: Wednesday, November 27, 2019 8:59:51 AM Subject: Re: Debugging Information Lacking? On 11/27/19, i

Debugging Information Lacking?

I have some other issues that I'm trying to work through, but I wanted to ask about a specific issue. I'm trying to see what BIND currently thinks all of the zones are, so I issue the "rndc dumpdb -zones" command. I get the following output: Nov 27 07:36:26 DNA-DNS1 named[20035]: receiv

Notice: BIND Security Jul2013 CVE2013-4854

IMPORTANT: The security issue described below has been confirmed by ISC to be 'in the wild' as of 18:00UTC July 26, and exploitation of this vulnerability against production servers has been reported by multiple organizations. Please be advised that immediate action is recommended. A

DDoS or Hijacking? Some tips for you delete poisoned cache

https://www.isc.org/blogs/hijacking-dns-error-ddos-what-happened-and-what-you-can-do/ >From ISC Support Engineering staff ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list b

Re: ISC Security Advisory: CVE-2013-2266: A Maliciously Crafted Regular Expression Can Cause Memory Exhaustion in named

ing the patched versions of BIND versus implementing the documented workaround?" Thanks, Michael McNally ISC Support ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users

ISC Security Advisory: CVE-2013-2266: A Maliciously Crafted Regular Expression Can Cause Memory Exhaustion in named

on the affected server. This condition can crash BIND 9 and will likely severely affect operation of other programs running on the same machine. Please Note: Versions of BIND 9.7 are beyond their "end of life" (EOL) and no longer receive testing or security fixes fro