BIND 8 deprecation for the release notes

To: debian-release@lists.debian.org
Cc: lamont@debian.org
Subject: BIND 8 deprecation for the release notes
From: Florian Weimer <fw@deneb.enyo.de>
Date: Wed, 10 Jan 2007 20:26:29 +0100
Message-id: <[🔎] 87fyain0nu.fsf@mid.deneb.enyo.de>

I recommend to add a note urging people to switch to BIND 9 (possibly
mentioning "check-names ignore", which is one of the larger hurdles
IIRC).

The main reason is this bug:

CVE-2006-0527 (BIND 4 (BIND4) and BIND 8 (BIND8), if used as a target forwarder, ...)
        - bind 1:8.4.7-1 (low)
        [sarge] - bind <no-dsa> (Architectual limitatiom, upgrade to BIND 9 as a a fix)
        NOTE: BIND 8 is unsuitable for forwarder use because of its
        NOTE: architecture.  Upgrade to BIND 9 as a fix.
        NOTE: This was fixed in sid by documenting it as an unfixable design limitation

Reply to:

Follow-Ups:
- Re: BIND 8 deprecation for the release notes
  - From: Fabio Tranchitella <kobold@kobold.it>

Prev by Date: Re: please unblock libxml-ruby
Next by Date: Re: BIND 8 deprecation for the release notes
Previous by thread: Re: please unblock libxml-ruby
Next by thread: Re: BIND 8 deprecation for the release notes
Index(es):
- Date
- Thread