Re: Bind security announce
On Thu, Dec 30, 2010 at 14:07, Jim Popovitch <email@example.com> wrote:
> On Thu, Dec 30, 2010 at 13:57, Adam D. Barratt <firstname.lastname@example.org> wrote:
>> On Tue, 2010-12-28 at 18:34 -0800, Account for Debian group mail wrote:
>>> Well I waited to see if someone came our with a solution to this problem,
>>> none seen. So I'm updating another machine, here is what "dselect" is
>>> showing me:
>> What that output doesn't include, which it should, is that there should
>> be two *new* packages to install - namely libdns58 and libisc50; were
>> those mentioned at any point in the process of selecting the updated
>> bind9 packages for installation?
> I used dselect to do the bind libs updates. The dependency mismatch
> was handled by dselect, and I had to approve what appeared a downgrade
> to libisc/dns. I really don't remember why, but my thought at the
> time was that I needed to find a way to purge all libdns and libisc
> packages because I don't run bind and only need dig/host/nslookup
> functionality on those boxes.
> Seriously though, dnsutils needs some overhaul and cleanup
Further, it's worth pointing out that after the bind libs update, the
libbind9-40* libdns45* libisc45* libisccc40* libisccfg40* liblwres40*
libs were not removed by a simple apt-get autoremove.