The Bind update for EL4 was just announced, packages that fix the issues ( see https://rhn.redhat.com/errata/RHSA-2009-1179.html ) are available for C4 at
http://dev.centos.org/~z00dax/c4-bind/
we dont normally release updates till the packages used for the build are also available, however since this is a major issue - it would be nice to get these updates out right away.
Keeping that in mind could someone test for :
a) install these packages, make sure they work for the basic stuff
b) update an existing bind install on C4 and make sure it does not break anything
c) ensure that the deps for the actual binaries are met cleanly within the existing CentOS-4 os + updates set.
As soon as we can get reasonable testing feedback here, we can push these packages into the released updates pool.
Thanks
On 07/29/2009 09:18 PM, Karanbir Singh wrote:
The Bind update for EL4 was just announced, packages that fix the issues ( see https://rhn.redhat.com/errata/RHSA-2009-1179.html ) are available for C4 at
yes, i got the wrong url. here is the right one:
https://rhn.redhat.com/errata/RHSA-2009-1180.html
Karanbir Singh napsal(a):
The Bind update for EL4 was just announced, packages that fix the issues ( see https://rhn.redhat.com/errata/RHSA-2009-1179.html ) are available for C4 at
http://dev.centos.org/~z00dax/c4-bind/
we dont normally release updates till the packages used for the build are also available, however since this is a major issue - it would be nice to get these updates out right away.
Keeping that in mind could someone test for :
a) install these packages, make sure they work for the basic stuff
b) update an existing bind install on C4 and make sure it does not break anything
c) ensure that the deps for the actual binaries are met cleanly within the existing CentOS-4 os + updates set.
As soon as we can get reasonable testing feedback here, we can push these packages into the released updates pool.
Thanks
3 instances, works fine. David Hrbáč
On 07/29/2009 09:46 PM, David Hrbáč wrote:
we dont normally release updates till the packages used for the build are also available, however since this is a major issue - it would be nice to get these updates out right away.
3 instances, works fine. David Hrbáč
Thanks David, I've moved 2 of my own C4 machines over to these packages as well and not had any issues - as in they continue to do what they should be doing.
If we can get a few more people with feedback, these packages should be ok to push.
On Wed, Jul 29, 2009 at 09:18:50PM +0100, Karanbir Singh wrote:
http://dev.centos.org/~z00dax/c4-bind/
b) update an existing bind install on C4 and make sure it does not break anything
c) ensure that the deps for the actual binaries are met cleanly within the existing CentOS-4 os + updates set.
Your rpms cleanly installed via rpm -Uvh on a c4.7 fully updated box; update from 9.2.4-30.el4_7.2 to 9.2.4-30.el4_8.4.
I am seeing no issues with any of the testing I have done.
Box is authoritative for it's own domain and ptr's for all internal networks; is not doing dnssec nor slaving to/from anyone else.
John
On Wed, July 29, 2009 4:18 pm, Karanbir Singh wrote:
The Bind update for EL4 was just announced, packages that fix the issues ( see https://rhn.redhat.com/errata/RHSA-2009-1179.html ) are available for C4 at
One successful update (master server) on a fully updated 32-bit C4.
Marko
On 07/29/2009 10:16 PM, Marko A. Jennings wrote:
One successful update (master server) on a fully updated 32-bit C4.
excellent! btw, both my machines are i386 - anyone done a test on x86_64 yet ?
On 07/30/2009 12:35 AM, Karanbir Singh wrote:
On 07/29/2009 10:16 PM, Marko A. Jennings wrote:
One successful update (master server) on a fully updated 32-bit C4.
excellent! btw, both my machines are i386 - anyone done a test on x86_64 yet ?
I just did. seems fine.
On 07/29/2009 11:18 PM, Karanbir Singh wrote:
The Bind update for EL4 was just announced, packages that fix the issues ( see https://rhn.redhat.com/errata/RHSA-2009-1179.html ) are available for C4 at
http://dev.centos.org/~z00dax/c4-bind/
we dont normally release updates till the packages used for the build are also available, however since this is a major issue - it would be nice to get these updates out right away.
Keeping that in mind could someone test for :
a) install these packages, make sure they work for the basic stuff
b) update an existing bind install on C4 and make sure it does not break anything
c) ensure that the deps for the actual binaries are met cleanly within the existing CentOS-4 os + updates set.
As soon as we can get reasonable testing feedback here, we can push these packages into the released updates pool.
Thanks
I have updated a slave server starting from:
#rpm -qa bind* bind-utils-9.2.4-30.el4 bind-9.2.4-30.el4 bind-chroot-9.2.4-30.el4 bind-libs-9.2.4-30.el4
No issues for rpm -Fvh *; zone transfers from master server + regular queries seem to be fine.
El 29/7/09 22:18, Karanbir Singh escribió:
we dont normally release updates till the packages used for the build are also available, however since this is a major issue - it would be nice to get these updates out right away.
(..)
As soon as we can get reasonable testing feedback here, we can push these packages into the released updates pool.
Thanks
+100 instances correctly updated via Spacewalk, anyway all instances are virtual clones:
rpm -Uvh bind-utils-9.2.4-30.el4_8.4.i386.rpm bind-libs-9.2.4-30.el4_8.4.i386.rpm bind-9.2.4-30.el4_8.4.i386.rpm Preparing... ########################################### [100%] 1:bind-libs ########################################### [ 33%] 2:bind-utils ########################################### [ 67%] 3:bind warning: /etc/rndc.conf created as /etc/rndc.conf.rpmnew ########################################### [100%]
Changelog:
# rpm -qa bind --changelog | head * jue jul 30 2009 Tomas Hoger <thoger redhat com> 20:9.2.4-30.4
- security fix for remote DoS (CVE-2009-0696, #514292)
Karanbir, thanks for the work :)
On 07/30/2009 09:44 AM, Santi Saez wrote:
+100 instances correctly updated via Spacewalk, anyway all instances are virtual clones:
jeez. you trust me more than I trust me. :)
ok, pushing to released.
-
David Hrbáč -
John R. Dennison -
Karanbir Singh -
Manuel Wolfshant -
Marko A. Jennings -
Santi Saez