Re: Updated bind marked as vulnerable

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]



At 02:08 PM 7/30/2008, you wrote:
Hi,

I have a Centos 4.6 machine that even tough has been updated with the latest bind 9.2.4-28.0.1.el4 is marked as vulnerable by https://www.dns-oarc.net/oarc/services/dnsentropy.

I have another machine which also uses that same distro and is not.

Do I have to do any other update?


Hello,

Big discussion on this group two weeks ago. Most likely, your problem is this line in /etc/named.conf:
 query-source address * port 53;
Remove that and retest.

However, be forewarned that it could cause problems with restarting named.. in which case, do not delete the line, just comment it, then uncomment if you get into trouble and reconsult the archives. That problem was resolved late week before last or early last week too.

If you want some better advice, post your errors.

Cheers,
Glenn
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos

[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux