[Bug 1202278] Re: bind9 has no rate limit option
I've started a backport request under LP #1218638 -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to bind9 in Ubuntu. https://bugs.launchpad.net/bugs/1202278 Title: bind9 has no rate limit option To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/bind9/+bug/1202278/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1202278] Re: bind9 has no rate limit option
It looks like upstream is adding this. Can we get this moved into an LTS after it is out? Should this still be marked wishlist since upstream is taking care of it? http://www.marketwire.com/press-release/isc-adds-ddos-defense-module-to- bind-software-1814775.htm -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to bind9 in Ubuntu. https://bugs.launchpad.net/bugs/1202278 Title: bind9 has no rate limit option To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/bind9/+bug/1202278/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1202278] Re: bind9 has no rate limit option
That does help, however I've already uninstalled the Ubuntu bind9 version created my own from source + patch. I think fixing the actual problem versus a firewall workaround is a better solution, personally. I understand that I'd more likely have had a fix if I reported it upstream, but this isn't a new problem as far as my googling shows, it appears upstream hasn't done anything yet. However, I appreciate your help response. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to bind9 in Ubuntu. https://bugs.launchpad.net/bugs/1202278 Title: bind9 has no rate limit option To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/bind9/+bug/1202278/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1202278] [NEW] bind9 has no rate limit option
*** This bug is a security vulnerability *** Public security bug reported: Bind9 is vulnerable to being used as a DDOS even when recursion is turned off. Ref: http://www.us-cert.gov/ncas/alerts/TA138-088A Can the Ubuntu team (or whomever is responsible for the bind9 package) please integrate this into a new package for the LTS? I've looked at the changelogs for 12.04 on bind9 package can't see that it was added. I've also tried adding the rate limit directive I get uknown option rate-limit and bind9 fails to start. As of this update, I have the latest bind9 package installed ( 1:9.8.1.dfsg.P1-4ubuntu0.6 ) One recommended fix is here: http://www.redbarn.org/dns/ratelimits If this is not elgible for an LTS, can we please add it to 12.10 or 13.04? Thank you, Robert ** Affects: bind9 (Ubuntu) Importance: Undecided Status: New ** Information type changed from Private Security to Public Security -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to bind9 in Ubuntu. https://bugs.launchpad.net/bugs/1202278 Title: bind9 has no rate limit option To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/bind9/+bug/1202278/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1065714] Re: vsftpd 2.3.5 needs allow_writeable_chroot option
This affects me as well. I upgrade from 11.04-12.04 and my configuration just broke. Please fix this. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to vsftpd in Ubuntu. https://bugs.launchpad.net/bugs/1065714 Title: vsftpd 2.3.5 needs allow_writeable_chroot option To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/vsftpd/+bug/1065714/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
