cPanne

Quality Assurance Analyst
Staff member
Oct 4, 2011
10
0
126
Cypress, Texas, United States
cPanel Access Level
Website Owner
Bind is managed by your package manager.

If you have WHM configured to keep your system up to date you should have the latest Bind available for your system.

This Security Advisory is currently under review and has not yet been accepted:
Candidate This CVE Identifier has "Candidate" status and must be reviewed and accepted by the CVE Editorial Board before it can be updated to official "Entry" status on the CVE List. It may be modified or even rejected in the future.

CVE - CVE-2011-4313 (under review)

By default cPanel servers don't have recursive queries turned on. Without recursive queries, you can't get cache poisoning.

For that reason this Security Advisory does not apply to a standard/ stock cPanel server.

Regards,
Anne
 

Vliegtuig

Well-Known Member
Jan 21, 2010
74
2
58
Our BIND server actually seems to have crashed tonight. Woke up to dozens of reports and incoming calls. We have never experienced problems with BIND before, so I doubt this is coincidence.

BIND version: BIND 9.3.6-P1-RedHat-9.3.6-16.P1.el5_7.1
OS: CentOS release 5.7 (Final)
Kernel (patched via Uptrack): 2.6.18-274.7.1.el5

The following was seen in my log:

Nov 18 08:37:57 <redacted> named[21400]: listening on IPv4 interface lo, 127.0.0.1#53
Nov 18 08:37:57 <redacted> named[21400]: listening on IPv4 interface eth1, <redacted>#53
.....
Nov 18 08:37:57 <redacted> named[21400]: listening on IPv4 interface eth1:cp15, <redacted>#53
Nov 18 08:37:57 <redacted> named[21400]: not listening on any interfaces
Restarting named 'solved' the problem.