nanog mailing list archives

Re: Reasons why BIND isn't being upgraded

From: Adam Rothschild <asr () latency net>
Date: Sat, 3 Feb 2001 16:19:54 -0500


On Sat, Feb 03, 2001 at 12:51:53PM -0800, Paul A Vixie wrote:

Will the ISC implement similar policies with its INN and DHCP software
in the foreseeable future, or is this something unique to BIND?


I don't see INN or DHCP as critical to the internet's infrastructure, so, no.


So, the more critical to the Internet's infrastructure software is,
the more difficult it should be for non-"privledged" people to be made
aware of key security announcements/patches in a timely manner?

Why not just notify everyone at once?  That way, when vulnerabilities
are discovered, people can take whatever action they deem appropriate
to protect their infrastructure (write/release their own set of BIND
patches?  upgrade to djbdns?  decide DNS is too daunting to manage
in-house, and outsource to Nominum or UltraDNS instead?), rather than
remain vulnerable, pending an official announcement from the
appropriate sources.

-adam

Current thread:

Re: Vixie doing his part to make people upgrade (was:Re: Reasons whyBIND isn't being upgraded), (continued)
- - - Re: Vixie doing his part to make people upgrade (was:Re: Reasons whyBIND isn't being upgraded) Henry R. Linneweh (Feb 24)
    - Re: Reasons why BIND isn't being upgraded Joe Rhett (Feb 24)
    - Re: Reasons why BIND isn't being upgraded Paul Vixie (Feb 24)
    - Re: Reasons why BIND isn't being upgraded Adam Rothschild (Feb 24)
    - Re: Reasons why BIND isn't being upgraded Adam McKenna (Feb 24)
    - Re: Reasons why BIND isn't being upgraded Steve Sobol (Feb 24)
    - Re: Reasons why BIND isn't being upgraded Adam McKenna (Feb 24)
    - Re: Reasons why BIND isn't being upgraded Joe Rhett (Feb 24)
    - Re: Reasons why BIND isn't being upgraded Patrick Greenwell (Feb 24)
    - Re: Reasons why BIND isn't being upgraded Paul A Vixie (Feb 24)
    - Re: Reasons why BIND isn't being upgraded Adam Rothschild (Feb 24)
    - Re: Reasons why BIND isn't being upgraded jlewis (Feb 24)
    - Re: Reasons why BIND isn't being upgraded Valdis . Kletnieks (Feb 24)
    - Re: Reasons why BIND isn't being upgraded Patrick Greenwell (Feb 24)
    - Re: Reasons why BIND isn't being upgraded jamie rishaw (Feb 24)
    - Re: Reasons why BIND isn't being upgraded Patrick Greenwell (Feb 24)
    - RE: Reasons why BIND isn't being upgraded Vivien M. (Feb 24)
    - Re: Reasons why BIND isn't being upgraded Jeffrey Meltzer (Feb 24)
    - Re: Reasons why BIND isn't being upgraded Adrian Chadd (Feb 24)
    - Re: Reasons why BIND isn't being upgraded Joe Rhett (Feb 24)
    - Re: Reasons why BIND isn't being upgraded mdevney (Feb 24)

(Thread continues...)