Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!


BIND DNS server critical vulnerability
New on LowEndTalk? Please Register and read our Community Rules.

All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.

BIND DNS server critical vulnerability

sshVMsshVM Member
edited October 2012 in General

Comments

  • AlexBarakovAlexBarakov Patron Provider, Veteran

    As far as I know cPanel uses BIND as well? So all cPanel servers are vuln?

  • Versions affected: Pre-9.6, 9.6-ESV->9.6-ESV-R7-P3, 9.7.0->9.7.6-P3, 9.8.0->9.8.3-P3, 9.9.0->9.9.1-P3

  • cPanel uses BIND 9.8.2rc1-RedHat-9.8.2-0.10.rc1.el6_3.4

  • 9.8.0->9.8.3-P3 affected

  • @Alex_LiquidHost said: As far as I know cPanel uses BIND as well?

    You have a choice in cPanel, bind being one of 3 servers it supports

  • @miTgiB Speaking of DNS, one of my domains hosted on a vps with you has had 200~ dns lookups each on two different days in the past week. Normally it never goes over 10k a day. Any idea why that would be?

  • @AsadHaider said: Any idea why that would be?

    I don't understand the question. 200 v 10k is quite a difference.

  • AsadAsad Member
    edited October 2012

    @miTgiB said: I don't understand the question. 200 v 10k is quite a difference.

    Yeah, exactly. I was wondering if you would know anything that would cause that many dns queries? The happened within a one hour window both times. I've got no idea what caused it.

    DNS DoS or something?

  • @AsadHaider said: DNS DoS or something?

    Pretty common lately to spoof udp against DNS servers :(

  • netomxnetomx Moderator, Veteran

    is BIND 9.7.3 affected?

  • We all servers use bind-9.7

  • risharderisharde Patron Provider, Veteran

    Yikes... so I'm wondering if and how I should update this ... afraid Kloxo doesn't play nicely after I do... hmmmm

  • eLohkCalbeLohkCalb Member
    edited October 2012

    RHEL/CentOS has released a patch on this (https://rhn.redhat.com/errata/RHSA-2012-1363.html). On CentOS 5 the patched version appears to be 9.3.6-20.P1.el5_8.5.

    Thanked by 1risharde
  • risharderisharde Patron Provider, Veteran
    edited October 2012

    @eLohkCalb thnx got confused with the version number :-)

Sign In or Register to comment.