[CentOS] Vulnerabilities to bind-libs bind-utils - possible to remove these on webservers

[mark]

Peda, Allan (NYC-GIS) wrote:
> I think the subject says it all.  We don't run named.  It seems there are
> chronic issues with bind.  Can these packages be removed?
>
> We locally authenticate. I see this:
>
> Removing for dependencies:
> bind-utils ipa-client sssd sssd-ad sssd-ipa
>
> We shouldn't need any of that with local authentication (/etc passwd and
> /etc/shadow) right?

Are you running sssd? Are you connected to the AD?

    mark (we do, and we are)