Correction to signatures on yesterday's BIND 9 releases
Stephane Bortzmeyer
bortzmeyer at nic.fr
Thu Jul 30 07:08:05 UTC 2009
On Wed, Jul 29, 2009 at 04:25:18PM +0000,
Evan Hunt <each at isc.org> wrote
a message of 16 lines which said:
> Due to a combination of circumstances, including extreme rush and
> the usual signer of our releases being away at IETF, we accidentally
> signed yesterday's BIND 9 patch releases (9.4.3-P3, 9.5.1-P3, and
> 9.6.1-P1) with the expired 2006 ISC signing key
How many people checked them? Probably not a lot since I did not saw
reports "BIND releases corrupted!". It tells a lot about Internet
security. And makes me seriously worry for the future when DNSSEC will
be deployed...
More information about the bind-users
mailing list