From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 4.0.0 (2022-12-14) on finch.gentoo.org X-Spam-Level: * X-Spam-Status: No, score=1.4 required=5.0 tests=DATE_IN_PAST_12_24,DMARC_QUAR, INVALID_DATE,MAILING_LIST_MULTI autolearn=no autolearn_force=no version=4.0.0 Received: from arsenic.akopia.com ([204.242.142.104] helo=kabbu.akopia.com) by cvs.gentoo.org with esmtp (Exim 3.22 #1) id 14TPoL-00058w-00 for gentoo-dev@gentoo.org; Thu, 15 Feb 2001 07:55:09 -0700 Received: by kabbu.akopia.com (Postfix, from userid 1020) id 865479BDD6; Thu, 15 Feb 2001 09:54:50 -0500 (EST) From: Jerry A! To: gentoo-dev@gentoo.org Subject: Re: [gentoo-dev] Bind 8.2.3 Message-ID: <20010215095450.A4843@kabbu.akopia.com> References: <20010214223723.A1278@kabbu.akopia.com> <3A8BDEF2.1300B3F@gottinger.de> <20010215092405.A384@kabbu.akopia.com> <3A8BE62C.2D0A2507@gottinger.de> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <3A8BE62C.2D0A2507@gottinger.de>; from 320095285153-0001@t-online.de on Thu, Feb 15, 2001 at 03:22:36PM +0100 Organization: Broken Toys Unlimited Sender: gentoo-dev-admin@gentoo.org Errors-To: gentoo-dev-admin@gentoo.org X-BeenThere: gentoo-dev@gentoo.org X-Mailman-Version: 2.0 Precedence: bulk Reply-To: gentoo-dev@gentoo.org X-Reply-To: jerry@thehutt.org List-Help: List-Post: List-Subscribe: , List-Id: Gentoo Linux development list List-Unsubscribe: , List-Archive: Date: Thu Feb 15 07:56:01 2001 X-Original-Date: Thu, 15 Feb 2001 09:54:50 -0500 X-Archives-Salt: 01cbe3d6-4237-4b01-89d5-e2bdc811df04 X-Archives-Hash: 72b3bfc4c668394a1be08efaf9750910 On Thu, Feb 15, 2001 at 03:22:36PM +0100, Achim Gottinger wrote: : "Jerry A!" wrote: : : > Well, I'm hoping that we can fix it. I'd prefer to pull the insecure : > versions out of the tree. Hate for us to be the distro that ships : > software w/known security holes. 8) : : We are still in a pre-productive phase right now, which should not mean we are : the most insecure distro on : planet earth. :-) : No version of bind 8 compiles on our current system (shame on us but no : security problems with 8 for us). : Is 9.1 really that much insecure? I took a look at the isc homepage and did not : find any security warnings for 9.1 : but for 8.2. : I will take a closer look at bind 8.2.3 now. But I have already spend some : hours on it without succes during : the glibc-2.2 move. I'm sorry, I didn't make myself clear. 9.1 is secure, that's why I put it in the tree. However, looking at net-misc/bind, all the insecure versions are still there. I would like to move them to the Attic on the CVS tree. Now, I know that some people still have a preference for bind8 which is why I was hoping that we could have a secure version of bind8 in the tree as well. Achim, if it doesn't work, it doesn't work. I just wanted a second opinion and to make sure that it wasn't just me having problems with bind8. --Jerry name: Jerry Alexandratos || Open-Source software isn't a phone: 703.599.6023 || matter of life or death... email: jerry@thehutt.org || ...It's much more important || than that!