Date: Sun, 20 Jul 2008 08:15:55 -1000 From: Clifton Royston <cliftonr@lava.net> To: Brett Glass <brett@lariat.net> Cc: stable@freebsd.org Subject: Re: FreeBSD 7.1 and BIND exploit Message-ID: <20080720181554.GA5405@lava.net> In-Reply-To: <200807200230.UAA17164@lariat.net> References: <200807200230.UAA17164@lariat.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, Jul 19, 2008 at 08:30:57PM -0600, Brett Glass wrote:
> Everyone:
>
> Will FreeBSD 7.1 be released in time to use it as an upgrade to
> close the BIND cache poisoning hole? We'd like to upgrade affected
> servers to the latest FreeBSD at the same time that we upgrade
> BIND if possible.
Given that 7.1 and 6.4 are still listed as "August" in the RE page,
and things often slip a bit as the date approaches, I'd say you'd be
well-advised not to wait. Assuming you're running 7.0 or 6.3, upgrade
to the latest _RELENG patch which is much less work than a full version
upgrade.
My opinion only. I'm not a developer, and I'm not running any
recursive resolvers on BIND these days; my limited set of machines are
running djbdns instead, so I have more flexibility.
-- Clifton
--
Clifton Royston -- cliftonr@iandicomputing.com / cliftonr@lava.net
President - I and I Computing * http://www.iandicomputing.com/
Custom programming, network design, systems and network consulting services
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20080720181554.GA5405>