26 Jan
2019
26 Jan
'19
9:22 a.m.
On Sat, 2019-01-26 at 10:12 +0100, Rob Janssen wrote:
But on our AMPRnet gateway (which has Debian Jessie)
there is a DNS server/resolver (bind 9.9.5)
Ouch. Bind v9.9.5 is ~10 years old... sure Debian applies patches, but
man that's way too old, even ISC would heavily advise against it. Why
can't that gateway be upgraded to Stretch or Buster? I'm willing to
help if help is needed.
But of course that would only happen when Debian
decide to replace
the bind package on Jessie with a new version that has been amended
according to the message that Brian sent (9.14.0). I am not so
convinced that this is going to happen, but I have not researched
that fully.
I can assure you that that your thoughts are correct on this. Debian
will patch patch patch bind v9.5.5, right up to the end of LTS support,
but never move to a newer major version. It's not in their mindset to
do such. ;-)
-Jim P.