Recently there was another bind9 security update released by the Debian Security Team. I thought that was odd, so I've scanned my mailbox:
- 11 January 2017
- DSA-3758 - bind9
- 26 February 2017
- DSA-3795-1 - bind9
- 14 May 2017
- DSA-3854-1 - bind9
- 8 July 2017
- DSA-3904-1 - bind9
So in the year to date there have been 7 months, in 3 of them nothing happened, but in 4 of them we had bind9 updates. If these trends continue we'll have another 2.5 updates before the end of the year.
I don't run a nameserver. The only reason I have bind-packages on my system is for the dig utility.
Rewriting a compatible version of dig in Perl should be trivial, thanks to the Net::DNS::Resolver module:
These are about the only commands I ever run:
dig -t a steve.fi +short
dig -t aaaa steve.fi +short
dig -t a steve.fi @8.8.8.8
I should do that then. Yes.
Tags: bind, security 8 comments