Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]
Groups > comp.protocols.dns.bind > #16029
| Path | csiph.com!newsfeed.xs4all.nl!newsfeed9.news.xs4all.nl!2.eu.feeder.erje.net!feeder.erje.net!news.uzoreto.com!news.etla.org!nntp-feed.chiark.greenend.org.uk!ewrotcd!usenet-its.stanford.edu!usenet.stanford.edu!not-for-mail |
|---|---|
| From | Michał Kępień <michal@isc.org> |
| Newsgroups | comp.protocols.dns.bind |
| Subject | Re: RPZ wildcard domain passthru not effective in BIND 9.11.21 |
| Date | Wed, 29 Jul 2020 09:46:10 +0200 |
| Lines | 28 |
| Approved | bind-users@lists.isc.org |
| Message-ID | <mailman.775.1596008737.942.bind-users@lists.isc.org> (permalink) |
| References | <CAKJFhayPPm41Ld1mpBxbTGL68bzgcWnX1F9eChO36E9gRi6KtQ@mail.gmail.com> <20200729074610.GA3814@larwa.hq.kempniu.pl> |
| NNTP-Posting-Host | lists.isc.org |
| Mime-Version | 1.0 |
| Content-Type | text/plain; charset=utf-8 |
| Content-Transfer-Encoding | quoted-printable |
| X-Trace | usenet.stanford.edu 1596008777 30256 149.20.1.60 (29 Jul 2020 07:46:17 GMT) |
| X-Complaints-To | action@cs.stanford.edu |
| Cc | bind-users@lists.isc.org |
| To | My Ocella <myocella@gmail.com> |
| Return-Path | <michal@isc.org> |
| X-Original-To | bind-users@lists.isc.org |
| Delivered-To | bind-users@lists.isc.org |
| Content-Disposition | inline |
| In-Reply-To | <CAKJFhayPPm41Ld1mpBxbTGL68bzgcWnX1F9eChO36E9gRi6KtQ@mail.gmail.com> |
| X-BeenThere | bind-users@lists.isc.org |
| X-Mailman-Version | 2.1.29 |
| Precedence | list |
| List-Id | BIND Users Mailing List <bind-users.lists.isc.org> |
| List-Unsubscribe | <https://lists.isc.org/mailman/options/bind-users>, <mailto:bind-users-request@lists.isc.org?subject=unsubscribe> |
| List-Archive | <https://lists.isc.org/pipermail/bind-users/> |
| List-Post | <mailto:bind-users@lists.isc.org> |
| List-Help | <mailto:bind-users-request@lists.isc.org?subject=help> |
| List-Subscribe | <https://lists.isc.org/mailman/listinfo/bind-users>, <mailto:bind-users-request@lists.isc.org?subject=subscribe> |
| X-Mailman-Original-Message-ID | <20200729074610.GA3814@larwa.hq.kempniu.pl> |
| X-Mailman-Original-References | <CAKJFhayPPm41Ld1mpBxbTGL68bzgcWnX1F9eChO36E9gRi6KtQ@mail.gmail.com> |
| Xref | csiph.com comp.protocols.dns.bind:16029 |
Show key headers only | View raw
> RPZ wildcard domain whitelist (passthru) doesn't seem to work as it should
> be.
>
> I have noticed that the last workable version is BIND 9.11.6-P1. I have
> tested the same configurations with versions 9.11.8, 9.11.19 and 9.11.21,
> and all produce the same issue.
>
> Has anyone experienced a similar issue here? or have I
> mis-configured something?
Looks like a match for GL #1619:
https://gitlab.isc.org/isc-projects/bind9/-/issues/1619
This will fixed in BIND 9.11.22, which is due in a few weeks.
If you urgently need a patch against BIND 9.11.21, try this one:
https://gitlab.isc.org/isc-projects/bind9/-/commit/33ae88f08dabea846aee3be3af8a515fd9774ee1.diff
Sorry about the trouble!
--
Best regards,
Michał Kępień
Back to comp.protocols.dns.bind | Previous | Next | Find similar
Re: RPZ wildcard domain passthru not effective in BIND 9.11.21 Michał Kępień <michal@isc.org> - 2020-07-29 09:46 +0200
csiph-web