[CentOS] Vulnerabilities to bind-libs bind-utils - possible to remove these on webservers

Mon Jun 24 13:41:06 UTC 2019
mark <m.roth at 5-cent.us>

Peda, Allan (NYC-GIS) wrote:
> I think the subject says it all.  We don't run named.  It seems there are
> chronic issues with bind.  Can these packages be removed?
> We locally authenticate. I see this:
> Removing for dependencies:
> bind-utils ipa-client sssd sssd-ad sssd-ipa
> We shouldn't need any of that with local authentication (/etc passwd and
> /etc/shadow) right?

Are you running sssd? Are you connected to the AD?

    mark (we do, and we are)