[Pkg-dns-devel] bind9: proposed handling of several open bugs
ondrej at sury.org
ondrej at sury.org
Mon Dec 11 23:08:34 UTC 2017
Hi,
all sounds good to me.
Ondřej
On 11 December 2017 23.43.17 Bernhard Schmidt <berni at debian.org> wrote:
> Hi,
>
> looking through the few remaining bugs of bind9 I'd like to propose a
> solution for several of them
>
> #741674 [i|+| ] [bind9] Include DNS Dampening to mitigate effects of
> DDoS using DNS Amplification
>
> wontfix + close: heavy diversion from upstream, might be in security
> related code, git repo for maintaining this patch has not been updated
> for four years
>
>
> #820056 [i| | ] [bind9] same file in multiple views breaks in 9.10 --
> writable file 'foo': already in use
>
> wontfix + upstream + close: upstream has changed that by design (because
> it will wreck havoc in journals, among others), won't diverge from that
>
>
> #593940 [n|+| ] [bind9utils] bind9utils: dnssec-{keygen,signzone}
> should not be in /usr/sbin
>
> wontfix + close: users can always directly call /usr/sbin/something,
> changing that would probably break tons of scripts
>
>
> #598434 [n|+| ] [bind9] bind9: Improve detection and handling of
> recursive 'include' statements in configuration files
>
> ask submitter to submit code upstream, only cherry-pick if the code is there
>
>
> Any objections?
>
> Bernhard
>
> _______________________________________________
> pkg-dns-devel mailing list
> pkg-dns-devel at lists.alioth.debian.org
> https://lists.alioth.debian.org/mailman/listinfo/pkg-dns-devel
More information about the pkg-dns-devel
mailing list