Your message dated Tue, 22 Aug 2017 22:34:32 +0000 with message-id <e1dkhkm-000ebo...@fasolo.debian.org> and subject line Bug#860794: fixed in bind9 1:9.10.3.dfsg.P4-12.6 has caused the Debian Bug report #860794, regarding Please update DNSSEC trusted keys before ICANN key rollover event to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 860794: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860794 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Package: src:bind9 Severity: important Tags: patch upstream Hi, ICANN will roll the DNSSEC root zone KSK in October 2017. DNSSEC-enabled resolvers will then stop working unless they have the new key configured to be trusted (note that in the default configuration a running BIND will learn and store the new key using RFC5011 (managed-keys), but a new installation will be broken). The patch attached is generated by diffing ./bind.keys{.h} from BIND 9.10.3-P4 to BIND 9.10.5, where the changelog reads 4564. [maint] Update the built in managed keys to include the upcoming root KSK. [RT #44579] Another way would be Bug#760459, but this will probably be too intrusive for jessie and stretch. Bernhard--- bind9-9.10.3.dfsg.P4/bind.keys 2016-02-29 01:29:06.000000000 +0100 +++ bind-9.10.5/bind.keys 2017-04-14 05:54:11.000000000 +0200 @@ -1,4 +1,3 @@ -/* $Id: bind.keys,v 1.7 2011/01/03 23:45:07 each Exp $ */ # The bind.keys file is used to override the built-in DNSSEC trust anchors # which are included as part of BIND 9. As of the current release, the only # trust anchors it contains are those for the DNS root zone ("."), and for @@ -15,32 +14,56 @@ # # This file is NOT expected to be user-configured. # -# These keys are current as of January 2011. If any key fails to +# These keys are current as of Feburary 2017. If any key fails to # initialize correctly, it may have expired. In that event you should # replace this file with a current version. The latest version of # bind.keys can always be obtained from ISC at https://www.isc.org/bind-keys. managed-keys { - # ISC DLV: See https://www.isc.org/solutions/dlv for details. - # NOTE: This key is activated by setting "dnssec-lookaside auto;" - # in named.conf. - dlv.isc.org. initial-key 257 3 5 "BEAAAAPHMu/5onzrEE7z1egmhg/WPO0+juoZrW3euWEn4MxDCE1+lLy2 - brhQv5rN32RKtMzX6Mj70jdzeND4XknW58dnJNPCxn8+jAGl2FZLK8t+ - 1uq4W+nnA3qO2+DL+k6BD4mewMLbIYFwe0PG73Te9fZ2kJb56dhgMde5 - ymX4BI/oQ+cAK50/xvJv00Frf8kw6ucMTwFlgPe+jnGxPPEmHAte/URk - Y62ZfkLoBAADLHQ9IrS2tryAe7mbBZVcOwIeU/Rw/mRx/vwwMCTgNboM - QKtUdvNXDrYJDSHZws3xiRXF1Rf+al9UmZfSav/4NWLKjHzpT59k/VSt - TDN0YUuWrBNh"; + # ISC DLV: See https://www.isc.org/solutions/dlv for details. + # + # NOTE: The ISC DLV zone is being phased out as of February 2017; + # the key will remain in place but the zone will be otherwise empty. + # Configuring "dnssec-lookaside auto;" to activate this key is + # harmless, but is no longer useful and is not recommended. + dlv.isc.org. initial-key 257 3 5 "BEAAAAPHMu/5onzrEE7z1egmhg/WPO0+juoZrW3euWEn4MxDCE1+lLy2 + brhQv5rN32RKtMzX6Mj70jdzeND4XknW58dnJNPCxn8+jAGl2FZLK8t+ + 1uq4W+nnA3qO2+DL+k6BD4mewMLbIYFwe0PG73Te9fZ2kJb56dhgMde5 + ymX4BI/oQ+cAK50/xvJv00Frf8kw6ucMTwFlgPe+jnGxPPEmHAte/URk + Y62ZfkLoBAADLHQ9IrS2tryAe7mbBZVcOwIeU/Rw/mRx/vwwMCTgNboM + QKtUdvNXDrYJDSHZws3xiRXF1Rf+al9UmZfSav/4NWLKjHzpT59k/VSt + TDN0YUuWrBNh"; - # ROOT KEY: See https://data.iana.org/root-anchors/root-anchors.xml - # for current trust anchor information. - # NOTE: This key is activated by setting "dnssec-validation auto;" + # ROOT KEYS: See https://data.iana.org/root-anchors/root-anchors.xml + # for current trust anchor information. + # + # These keys are activated by setting "dnssec-validation auto;" # in named.conf. - . initial-key 257 3 8 "AwEAAagAIKlVZrpC6Ia7gEzahOR+9W29euxhJhVVLOyQbSEW0O8gcCjF - FVQUTf6v58fLjwBd0YI0EzrAcQqBGCzh/RStIoO8g0NfnfL2MTJRkxoX - bfDaUeVPQuYEhg37NZWAJQ9VnMVDxP/VHL496M/QZxkjf5/Efucp2gaD - X6RS6CXpoY68LsvPVjR0ZSwzz1apAzvN9dlzEheX7ICJBBtuA6G3LQpz - W5hOA2hzCTMjJPJ8LbqF6dsV6DoBQzgul0sGIcGOYl7OyQdXfZ57relS - Qageu+ipAdTTJ25AsRTAoub8ONGcLmqrAmRLKBP1dfwhYB4N7knNnulq - QxA+Uk1ihz0="; + # + # This key (19036) is to be phased out starting in 2017. It will + # remain in the root zone for some time after its successor key + # has been added. It will remain this file until it is removed from + # the root zone. + . initial-key 257 3 8 "AwEAAagAIKlVZrpC6Ia7gEzahOR+9W29euxhJhVVLOyQbSEW0O8gcCjF + FVQUTf6v58fLjwBd0YI0EzrAcQqBGCzh/RStIoO8g0NfnfL2MTJRkxoX + bfDaUeVPQuYEhg37NZWAJQ9VnMVDxP/VHL496M/QZxkjf5/Efucp2gaD + X6RS6CXpoY68LsvPVjR0ZSwzz1apAzvN9dlzEheX7ICJBBtuA6G3LQpz + W5hOA2hzCTMjJPJ8LbqF6dsV6DoBQzgul0sGIcGOYl7OyQdXfZ57relS + Qageu+ipAdTTJ25AsRTAoub8ONGcLmqrAmRLKBP1dfwhYB4N7knNnulq + QxA+Uk1ihz0="; + + # This key (20326) is to be published in the root zone in 2017. + # Servers which were already using the old key (19036) should + # roll seamlessly to this new one via RFC 5011 rollover. Servers + # being set up for the first time can use the contents of this + # file as initializing keys; thereafter, the keys in the + # managed key database will be trusted and maintained + # automatically. + . initial-key 257 3 8 "AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3 + +/4RgWOq7HrxRixHlFlExOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kv + ArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgCmr3EgVLrjyBxWezF + 0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+e + oZG+SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfd + RUfhHdY6+cn8HFRm+2hM8AnXGXws9555KrUB5qihylGa8subX2Nn6UwN + R1AkUTV74bU="; }; --- bind9-9.10.3.dfsg.P4/bind.keys.h 2016-02-29 01:29:06.000000000 +0100 +++ bind-9.10.5/bind.keys.h 2017-04-14 05:54:11.000000000 +0200 @@ -1,7 +1,3 @@ -/* - * Generated by bindkeys.pl 1.7 2011/01/04 23:47:13 tbox Exp - * From bind.keys 1.7 2011/01/03 23:45:07 each Exp - */ #define TRUSTED_KEYS "\ # The bind.keys file is used to override the built-in DNSSEC trust anchors\n\ # which are included as part of BIND 9. As of the current release, the only\n\ @@ -19,34 +15,58 @@ #\n\ # This file is NOT expected to be user-configured.\n\ #\n\ -# These keys are current as of January 2011. If any key fails to\n\ +# These keys are current as of Feburary 2017. If any key fails to\n\ # initialize correctly, it may have expired. In that event you should\n\ # replace this file with a current version. The latest version of\n\ # bind.keys can always be obtained from ISC at https://www.isc.org/bind-keys.\n\ \n\ trusted-keys {\n\ - # ISC DLV: See https://www.isc.org/solutions/dlv for details.\n\ - # NOTE: This key is activated by setting \"dnssec-lookaside auto;\"\n\ - # in named.conf.\n\ - dlv.isc.org. 257 3 5 \"BEAAAAPHMu/5onzrEE7z1egmhg/WPO0+juoZrW3euWEn4MxDCE1+lLy2\n\ - brhQv5rN32RKtMzX6Mj70jdzeND4XknW58dnJNPCxn8+jAGl2FZLK8t+\n\ - 1uq4W+nnA3qO2+DL+k6BD4mewMLbIYFwe0PG73Te9fZ2kJb56dhgMde5\n\ - ymX4BI/oQ+cAK50/xvJv00Frf8kw6ucMTwFlgPe+jnGxPPEmHAte/URk\n\ - Y62ZfkLoBAADLHQ9IrS2tryAe7mbBZVcOwIeU/Rw/mRx/vwwMCTgNboM\n\ - QKtUdvNXDrYJDSHZws3xiRXF1Rf+al9UmZfSav/4NWLKjHzpT59k/VSt\n\ - TDN0YUuWrBNh\";\n\ -\n\ - # ROOT KEY: See https://data.iana.org/root-anchors/root-anchors.xml\n\ - # for current trust anchor information.\n\ - # NOTE: This key is activated by setting \"dnssec-validation auto;\"\n\ + # ISC DLV: See https://www.isc.org/solutions/dlv for details.\n\ + #\n\ + # NOTE: The ISC DLV zone is being phased out as of February 2017;\n\ + # the key will remain in place but the zone will be otherwise empty.\n\ + # Configuring \"dnssec-lookaside auto;\" to activate this key is\n\ + # harmless, but is no longer useful and is not recommended.\n\ + dlv.isc.org. 257 3 5 \"BEAAAAPHMu/5onzrEE7z1egmhg/WPO0+juoZrW3euWEn4MxDCE1+lLy2\n\ + brhQv5rN32RKtMzX6Mj70jdzeND4XknW58dnJNPCxn8+jAGl2FZLK8t+\n\ + 1uq4W+nnA3qO2+DL+k6BD4mewMLbIYFwe0PG73Te9fZ2kJb56dhgMde5\n\ + ymX4BI/oQ+cAK50/xvJv00Frf8kw6ucMTwFlgPe+jnGxPPEmHAte/URk\n\ + Y62ZfkLoBAADLHQ9IrS2tryAe7mbBZVcOwIeU/Rw/mRx/vwwMCTgNboM\n\ + QKtUdvNXDrYJDSHZws3xiRXF1Rf+al9UmZfSav/4NWLKjHzpT59k/VSt\n\ + TDN0YUuWrBNh\";\n\ +\n\ + # ROOT KEYS: See https://data.iana.org/root-anchors/root-anchors.xml\n\ + # for current trust anchor information.\n\ + #\n\ + # These keys are activated by setting \"dnssec-validation auto;\"\n\ # in named.conf.\n\ - . 257 3 8 \"AwEAAagAIKlVZrpC6Ia7gEzahOR+9W29euxhJhVVLOyQbSEW0O8gcCjF\n\ - FVQUTf6v58fLjwBd0YI0EzrAcQqBGCzh/RStIoO8g0NfnfL2MTJRkxoX\n\ - bfDaUeVPQuYEhg37NZWAJQ9VnMVDxP/VHL496M/QZxkjf5/Efucp2gaD\n\ - X6RS6CXpoY68LsvPVjR0ZSwzz1apAzvN9dlzEheX7ICJBBtuA6G3LQpz\n\ - W5hOA2hzCTMjJPJ8LbqF6dsV6DoBQzgul0sGIcGOYl7OyQdXfZ57relS\n\ - Qageu+ipAdTTJ25AsRTAoub8ONGcLmqrAmRLKBP1dfwhYB4N7knNnulq\n\ - QxA+Uk1ihz0=\";\n\ + #\n\ + # This key (19036) is to be phased out starting in 2017. It will\n\ + # remain in the root zone for some time after its successor key\n\ + # has been added. It will remain this file until it is removed from\n\ + # the root zone.\n\ + . 257 3 8 \"AwEAAagAIKlVZrpC6Ia7gEzahOR+9W29euxhJhVVLOyQbSEW0O8gcCjF\n\ + FVQUTf6v58fLjwBd0YI0EzrAcQqBGCzh/RStIoO8g0NfnfL2MTJRkxoX\n\ + bfDaUeVPQuYEhg37NZWAJQ9VnMVDxP/VHL496M/QZxkjf5/Efucp2gaD\n\ + X6RS6CXpoY68LsvPVjR0ZSwzz1apAzvN9dlzEheX7ICJBBtuA6G3LQpz\n\ + W5hOA2hzCTMjJPJ8LbqF6dsV6DoBQzgul0sGIcGOYl7OyQdXfZ57relS\n\ + Qageu+ipAdTTJ25AsRTAoub8ONGcLmqrAmRLKBP1dfwhYB4N7knNnulq\n\ + QxA+Uk1ihz0=\";\n\ +\n\ + # This key (20326) is to be published in the root zone in 2017.\n\ + # Servers which were already using the old key (19036) should\n\ + # roll seamlessly to this new one via RFC 5011 rollover. Servers\n\ + # being set up for the first time can use the contents of this\n\ + # file as initializing keys; thereafter, the keys in the\n\ + # managed key database will be trusted and maintained\n\ + # automatically.\n\ + . 257 3 8 \"AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3\n\ + +/4RgWOq7HrxRixHlFlExOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kv\n\ + ArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgCmr3EgVLrjyBxWezF\n\ + 0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+e\n\ + oZG+SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfd\n\ + RUfhHdY6+cn8HFRm+2hM8AnXGXws9555KrUB5qihylGa8subX2Nn6UwN\n\ + R1AkUTV74bU=\";\n\ };\n\ " @@ -67,33 +87,57 @@ #\n\ # This file is NOT expected to be user-configured.\n\ #\n\ -# These keys are current as of January 2011. If any key fails to\n\ +# These keys are current as of Feburary 2017. If any key fails to\n\ # initialize correctly, it may have expired. In that event you should\n\ # replace this file with a current version. The latest version of\n\ # bind.keys can always be obtained from ISC at https://www.isc.org/bind-keys.\n\ \n\ managed-keys {\n\ - # ISC DLV: See https://www.isc.org/solutions/dlv for details.\n\ - # NOTE: This key is activated by setting \"dnssec-lookaside auto;\"\n\ - # in named.conf.\n\ - dlv.isc.org. initial-key 257 3 5 \"BEAAAAPHMu/5onzrEE7z1egmhg/WPO0+juoZrW3euWEn4MxDCE1+lLy2\n\ - brhQv5rN32RKtMzX6Mj70jdzeND4XknW58dnJNPCxn8+jAGl2FZLK8t+\n\ - 1uq4W+nnA3qO2+DL+k6BD4mewMLbIYFwe0PG73Te9fZ2kJb56dhgMde5\n\ - ymX4BI/oQ+cAK50/xvJv00Frf8kw6ucMTwFlgPe+jnGxPPEmHAte/URk\n\ - Y62ZfkLoBAADLHQ9IrS2tryAe7mbBZVcOwIeU/Rw/mRx/vwwMCTgNboM\n\ - QKtUdvNXDrYJDSHZws3xiRXF1Rf+al9UmZfSav/4NWLKjHzpT59k/VSt\n\ - TDN0YUuWrBNh\";\n\ -\n\ - # ROOT KEY: See https://data.iana.org/root-anchors/root-anchors.xml\n\ - # for current trust anchor information.\n\ - # NOTE: This key is activated by setting \"dnssec-validation auto;\"\n\ + # ISC DLV: See https://www.isc.org/solutions/dlv for details.\n\ + #\n\ + # NOTE: The ISC DLV zone is being phased out as of February 2017;\n\ + # the key will remain in place but the zone will be otherwise empty.\n\ + # Configuring \"dnssec-lookaside auto;\" to activate this key is\n\ + # harmless, but is no longer useful and is not recommended.\n\ + dlv.isc.org. initial-key 257 3 5 \"BEAAAAPHMu/5onzrEE7z1egmhg/WPO0+juoZrW3euWEn4MxDCE1+lLy2\n\ + brhQv5rN32RKtMzX6Mj70jdzeND4XknW58dnJNPCxn8+jAGl2FZLK8t+\n\ + 1uq4W+nnA3qO2+DL+k6BD4mewMLbIYFwe0PG73Te9fZ2kJb56dhgMde5\n\ + ymX4BI/oQ+cAK50/xvJv00Frf8kw6ucMTwFlgPe+jnGxPPEmHAte/URk\n\ + Y62ZfkLoBAADLHQ9IrS2tryAe7mbBZVcOwIeU/Rw/mRx/vwwMCTgNboM\n\ + QKtUdvNXDrYJDSHZws3xiRXF1Rf+al9UmZfSav/4NWLKjHzpT59k/VSt\n\ + TDN0YUuWrBNh\";\n\ +\n\ + # ROOT KEYS: See https://data.iana.org/root-anchors/root-anchors.xml\n\ + # for current trust anchor information.\n\ + #\n\ + # These keys are activated by setting \"dnssec-validation auto;\"\n\ # in named.conf.\n\ - . initial-key 257 3 8 \"AwEAAagAIKlVZrpC6Ia7gEzahOR+9W29euxhJhVVLOyQbSEW0O8gcCjF\n\ - FVQUTf6v58fLjwBd0YI0EzrAcQqBGCzh/RStIoO8g0NfnfL2MTJRkxoX\n\ - bfDaUeVPQuYEhg37NZWAJQ9VnMVDxP/VHL496M/QZxkjf5/Efucp2gaD\n\ - X6RS6CXpoY68LsvPVjR0ZSwzz1apAzvN9dlzEheX7ICJBBtuA6G3LQpz\n\ - W5hOA2hzCTMjJPJ8LbqF6dsV6DoBQzgul0sGIcGOYl7OyQdXfZ57relS\n\ - Qageu+ipAdTTJ25AsRTAoub8ONGcLmqrAmRLKBP1dfwhYB4N7knNnulq\n\ - QxA+Uk1ihz0=\";\n\ + #\n\ + # This key (19036) is to be phased out starting in 2017. It will\n\ + # remain in the root zone for some time after its successor key\n\ + # has been added. It will remain this file until it is removed from\n\ + # the root zone.\n\ + . initial-key 257 3 8 \"AwEAAagAIKlVZrpC6Ia7gEzahOR+9W29euxhJhVVLOyQbSEW0O8gcCjF\n\ + FVQUTf6v58fLjwBd0YI0EzrAcQqBGCzh/RStIoO8g0NfnfL2MTJRkxoX\n\ + bfDaUeVPQuYEhg37NZWAJQ9VnMVDxP/VHL496M/QZxkjf5/Efucp2gaD\n\ + X6RS6CXpoY68LsvPVjR0ZSwzz1apAzvN9dlzEheX7ICJBBtuA6G3LQpz\n\ + W5hOA2hzCTMjJPJ8LbqF6dsV6DoBQzgul0sGIcGOYl7OyQdXfZ57relS\n\ + Qageu+ipAdTTJ25AsRTAoub8ONGcLmqrAmRLKBP1dfwhYB4N7knNnulq\n\ + QxA+Uk1ihz0=\";\n\ +\n\ + # This key (20326) is to be published in the root zone in 2017.\n\ + # Servers which were already using the old key (19036) should\n\ + # roll seamlessly to this new one via RFC 5011 rollover. Servers\n\ + # being set up for the first time can use the contents of this\n\ + # file as initializing keys; thereafter, the keys in the\n\ + # managed key database will be trusted and maintained\n\ + # automatically.\n\ + . initial-key 257 3 8 \"AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3\n\ + +/4RgWOq7HrxRixHlFlExOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kv\n\ + ArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgCmr3EgVLrjyBxWezF\n\ + 0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+e\n\ + oZG+SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfd\n\ + RUfhHdY6+cn8HFRm+2hM8AnXGXws9555KrUB5qihylGa8subX2Nn6UwN\n\ + R1AkUTV74bU=\";\n\ };\n\ "
--- End Message ---
--- Begin Message ---Source: bind9 Source-Version: 1:9.10.3.dfsg.P4-12.6 We believe that the bug you reported is fixed in the latest version of bind9, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 860...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Bernhard Schmidt <be...@debian.org> (supplier of updated bind9 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Fri, 11 Aug 2017 19:10:07 +0200 Source: bind9 Binary: bind9 bind9utils bind9-doc host bind9-host libbind-dev libbind9-140 libdns162 libirs141 libisc160 liblwres141 libisccc140 libisccfg140 dnsutils lwresd libbind-export-dev libdns-export162 libdns-export162-udeb libisc-export160 libisc-export160-udeb libisccfg-export140 libisccc-export140 libisccc-export140-udeb libisccfg-export140-udeb libirs-export141 libirs-export141-udeb Architecture: source Version: 1:9.10.3.dfsg.P4-12.6 Distribution: unstable Urgency: medium Maintainer: LaMont Jones <lam...@debian.org> Changed-By: Bernhard Schmidt <be...@debian.org> Description: bind9 - Internet Domain Name Server bind9-doc - Documentation for BIND bind9-host - Version of 'host' bundled with BIND 9.X bind9utils - Utilities for BIND dnsutils - Clients provided with BIND host - Transitional package libbind-dev - Static Libraries and Headers used by BIND libbind-export-dev - Development files for the exported BIND libraries libbind9-140 - BIND9 Shared Library used by BIND libdns-export162 - Exported DNS Shared Library libdns-export162-udeb - Exported DNS library for debian-installer (udeb) libdns162 - DNS Shared Library used by BIND libirs-export141 - Exported IRS Shared Library libirs-export141-udeb - Exported IRS library for debian-installer (udeb) libirs141 - DNS Shared Library used by BIND libisc-export160 - Exported ISC Shared Library libisc-export160-udeb - Exported ISC library for debian-installer (udeb) libisc160 - ISC Shared Library used by BIND libisccc-export140 - Command Channel Library used by BIND libisccc-export140-udeb - Command Channel Library used by BIND (udeb) libisccc140 - Command Channel Library used by BIND libisccfg-export140 - Exported ISC CFG Shared Library libisccfg-export140-udeb - Exported ISC CFG library for debian-installer (udeb) libisccfg140 - Config File Handling Library used by BIND liblwres141 - Lightweight Resolver Library used by BIND lwresd - Lightweight Resolver Daemon Closes: 860794 Changes: bind9 (1:9.10.3.dfsg.P4-12.6) unstable; urgency=medium . * Non-maintainer upload. * Import upcoming DNSSEC KSK-2017 from 9.10.5 (Closes: #860794) Checksums-Sha1: ceeba71f4ae5a2dccd6521ae238f80d6f25b6028 3783 bind9_9.10.3.dfsg.P4-12.6.dsc 2b2b272a792b5e400f151db958385a15819d86ea 89252 bind9_9.10.3.dfsg.P4-12.6.debian.tar.xz 462c3734c3517ce20e795ea22d2d5f272a92b0a8 20073 bind9_9.10.3.dfsg.P4-12.6_amd64.buildinfo Checksums-Sha256: 21a27d87218a4c254995be0dd4af8219f7fadeb9a82270af92317a83378dd4ed 3783 bind9_9.10.3.dfsg.P4-12.6.dsc 5f74179ed6e3168e0fd4932cdc5dbc220cbd79da2fcac0736449e7618ad46f54 89252 bind9_9.10.3.dfsg.P4-12.6.debian.tar.xz 1851d4286787bee1672342b434c63f14d2bd7dce5444f0089dfeb4cb9acc504a 20073 bind9_9.10.3.dfsg.P4-12.6_amd64.buildinfo Files: 357622969dd49a6a6559c1094e896a0f 3783 net optional bind9_9.10.3.dfsg.P4-12.6.dsc 4770d168245c90ac41e928866b1a62c1 89252 net optional bind9_9.10.3.dfsg.P4-12.6.debian.tar.xz efdcb238faba7e5582605c8b544be746 20073 net optional bind9_9.10.3.dfsg.P4-12.6_amd64.buildinfo -----BEGIN PGP SIGNATURE----- iQJFBAEBCAAvFiEE1uAexRal3873GVbTd1B55bhQvJMFAlmTbVURHGJlcm5pQGRl Ymlhbi5vcmcACgkQd1B55bhQvJN2whAAmkRod1S/gSXVXMLB3rGTWCouW3TYfI74 MLhRNipb6a6iJVWj3Z8GXlxMIZRFUuNti+vjqqc+ZbWk/RHLsJjk6GXCosypq0ol MflF7m3q/pF1KyVV/CPCb4Ul9IqcYC7rKbHU5L/RlluS7IhLSPAt9INev771KSO4 reGziGXp0U2N9oulgmxapVDZmb5knw509+8rpCWH8wtmX6KonWNFm/xU4h3oBzf2 Ll4h2/GJzPKAgSo0Vgr3VpEMliiB5/5q+QCXG3tkF2tB1bcAe+ULlxin+fLP/mcY uDH71/5qfnTy7HXA7rI/17a01KmROsE8bhpW1iCOBzTn8cg2krpYcS0DvfKZWyhm oSnkFNVPbNJQEs25pFZvn9dZN/K3rMkwei7q67ZxNZbCVuOUPDhAaclXv8Nm3MDi 6DfkN64R66wrfBwMLrmRFfy0qU7SK9AJmpbrGbyj9IBqtFvUC8+TbZ++gCJ3ebN3 7WjQD1QSn4fpsSN8BGiATteL0uCpke0ycLVK40/xIBvDq7O1qoOJMNxrC8YHLonT C9jm5XVrtSmD1E60KYSTMxVHWLnxrXDBLD3a552x2eh3d2RqwiS03UvkexYzQ8Ds ZWn3D+KRJeJN1EyeSYMIqIZFOJVyyED+oWz3ys0zo0IAkzC5ykVG/gS6eoqVGogQ Ng5U4ZN2P7g= =6gW2 -----END PGP SIGNATURE-----
--- End Message ---
