Re: Fwd: Re: Fwd: Re: Difference between netstat & rndc status

On 05/07/11 06:25, Bind wrote: > -Original Message- > From: "Bind" > To: "Mark Andrews" > Date: Tue, 05 Jul 2011 09:55:03 +0430 > Subject: Re: Fwd: Re: Difference between netstat & rndc status > > > Thanks for your best support and answers all the time. > Could u explain more about

Re: whether to return RRSIG RRs

Cathy Zhang wrote: > # Check direct query for RRSIG: If it's not cached with other records, > # it should result in an empty response. > > Why shouldn't recursive server return RRSIG RRs to the client? An RRSIG is part of the RRset that it signs, and the whole thing must travel together

BIND 9.8.0-P4

Introduction BIND 9.8.0-P4 is security patch for BIND 9.8.0. Please see the CHANGES file in the source code release for a complete list of all changes. Download The latest versions of BIND 9 software can always be found on our web site at http://www.isc.org/downloads/all. There

BIND 9.6-ESV-R4-P3

Introduction BIND 9.6-ESV-R4-P3 is security patch for BIND 9.6-ESV-R4. Please see the CHANGES file in the source code release for a complete list of all changes. Download The latest versions of BIND 9 software can always be found on our web site at http://www.isc.org/downloads/a

Security Advisory: CVE-2011-2465 ISC BIND 9 Remote Crash with Certain RPZ Configurations

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 ISC BIND 9 Remote Crash with Certain RPZ Configurations Two defects were discovered in ISC's BIND 9 code. These defects only affect BIND 9 servers which have recursion enabled and which use a specific feature of the software known as Response Policy

Security Advisory: CVE-2011-2464 - ISC BIND 9 Remote packet Denial of Service against Authoritative and Recursive Servers

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 ISC BIND 9 Remote packet Denial of Service against Authoritative and Recursive Servers A specially constructed packet will cause BIND 9 ("named") to exit, affecting DNS service. CVE: CVE-2011-2464 Document Version: 2.0 Posting date: 05 Jul 2011

BIND 9.7.3-P3

Introduction BIND 9.7.3-P3 is security patch for BIND 9.7.3. Please see the CHANGES file in the source code release for a complete list of all changes. Download The latest versions of BIND 9 software can always be found on our web site at http://www.isc.org/downloads/all. There

cve-2011-2464 affected the 9.4-ESV-R4-P1?

Hi all, on the ISC website i don't see that the 9.4-ESV-R4-P1 is affected by the CVE-2011-2464 is it because it's not really affected? or it's affected but i don't see it on "versions affected" because the 9.4-ESV-R4-P1 has it's EOL date to jun2011. Thanks. Issam HARRATHI.

Re: Slow list

On Jun 1 2011, Alan Clegg wrote: On 6/1/2011 7:16 AM, /dev/rob0 wrote: On Wed, Jun 01, 2011 at 09:54:04AM +0200, Jan-Piet Mens wrote: Does anyone else find the bind-users list to be very slow? [...] I'll have operations take a look into what is causing the delay (it doesn't happen on all mai

Re: cve-2011-2464 affected the 9.4-ESV-R4-P1?

> on the ISC website i don't see that the 9.4-ESV-R4-P1 is affected by the > CVE-2011-2464 is it because it's not really affected? or it's affected > but i don't see it on "versions affected" because the 9.4-ESV-R4-P1 has > it's EOL date to jun2011. To be very precise with my language: It is not

Re: Client cannot resolve communities.intel.com

On 7/5/2011 12:28 AM, Fajar A. Nugraha wrote: On Tue, Jul 5, 2011 at 10:29 AM, vr wrote: Hello, I am trying to visit "http://communities.intel.com"; using Iceweasel on a Debian desktop PC. No proxies. My clients etc/resolv.conf point to my own Debian BIND 9.7.3 installed on a separate server

Re: Slow list

On Tue, 5 Jul 2011, Chris Thompson wrote: > On Jun 1 2011, Alan Clegg wrote: > > > On 6/1/2011 7:16 AM, /dev/rob0 wrote: > > > On Wed, Jun 01, 2011 at 09:54:04AM +0200, Jan-Piet Mens wrote: > > > > > Does anyone else find the bind-users list to be very slow? > [...] > > I'll have operations tak

"Key : Delaying activation to match the DNSKEY TTL."

I saw this message from dnssec-signzone around the time a previously published key was due to be activated, and I'm not quite sure what it means. Google is uncharacteristically silent about it ;). If someone could offer an explanation of why the activation was delayed and whether I should care it

Re: cve-2011-2464 affected the 9.4-ESV-R4-P1?

In message <20110705200619.gb99...@isc.org>, Evan Hunt writes: > > on the ISC website i don't see that the 9.4-ESV-R4-P1 is affected by the > > CVE-2011-2464 is it because it's not really affected? or it's affected > > but i don't see it on "versions affected" because the 9.4-ESV-R4-P1 has > > it'

Re: "Key : Delaying activation to match the DNSKEY TTL."

On Tue, Jul 05, 2011 at 02:28:13PM -0700, Paul B. Henson wrote: > I saw this message from dnssec-signzone around the time a previously > published key was due to be activated, and I'm not quite sure what it > means. Google is uncharacteristically silent about it ;). > > If someone could offer an e