Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Help needed with script to verify the version of BIND
Top Forums Shell Programming and Scripting Help needed with script to verify the version of BIND Post 302303009 by sport on Wednesday 1st of April 2009 03:49:11 PM
Old 04-01-2009
Bug Help needed with script to verify the version of BIND
I have tried thought of using instfix -ivqc | grep BIND , but this did not return the result I was looking for; it seem to list out the the different patches that had been applied to BIND. I'm actually looking for overall version, like you'd get when checking the OS level for instance.
 

7 More Discussions You Might Find Interesting

1. Cybersecurity

bind version

How do I find out my current version of BIND? Dhall1973:D (1 Reply)
Discussion started by: dhall1973
1 Replies

2. Programming

Why a shared version is needed

Trying to make a library and get this error : *** Warning: This library needs some functionality provided by -lming32. *** I have the capability to make that library automatically link in when *** you link to this library. But I can only do this if you have a *** shared version of the... (1 Reply)
Discussion started by: hirosima
1 Replies

3. Red Hat

How to verify the current NIC driver version installed in RHEL5.3??

Guys, Can you help me how to verify the current installed NIC driver version in RHEL5.3? Thanks.:D (1 Reply)
Discussion started by: shtobias
1 Replies

4. UNIX for Advanced & Expert Users

ldapsearch in monitoring script without bind password written in script

Hi I do a very simple monitoring of our OpenLDAP (runs in cronjob and generate alerts if unsuccessfull) $ ldapsearch -h hostname.domain -D "cn=monitor_user,ou=People,dc=organisation" -w "password" -b "dc=organisation" -x "(&(cn=monitor_user)(ou=People))" dn | grep -v version dn:... (4 Replies)
Discussion started by: slashdotweenie
4 Replies

5. Shell Programming and Scripting

Needed script for the version file

I need some help with the logic and syntax for a shell script (ksh) that will search a directory and look for similar files and save only the 5 versions. The version number is in the file name. However, the files are of varying name lengths and may have 1 or many files, with no limit to the... (2 Replies)
Discussion started by: hemanthsaikumar
2 Replies

6. UNIX for Advanced & Expert Users

Script to verify veritas mirror

Hi Experts, I have lot of Solaris servers and in most of them, root disk is mirrored in rootdg. I just want to check all servers, if there is any server whose root disk is not mirrored. Either it may be with detached plexes or not mirrored at all. I can run a for loop for all servers. Can... (4 Replies)
Discussion started by: solaris_1977
4 Replies

7. Cybersecurity

Rpm for BIND 9 version 9.9.7-P2 (fix CVE-2015-5477) rhel

Hello, I have a RedHat machine (version 5.11) and i need to install BIND version version 9.9.7-P2 in order to fix a known BIND vulnerability CVE-2015-5477. I downloaded the tar file from isc website but i am having trouble to install the file. Does anybody knows a link for the rpm package of... (0 Replies)
Discussion started by: omonoiatis9
0 Replies

LEARN ABOUT DEBIAN

isc-hmac-fixup

ISC-HMAC-FIXUP(1)						       BIND9							 ISC-HMAC-FIXUP(1)

NAME

       isc-hmac-fixup - fixes HMAC keys generated by older versions of BIND

SYNOPSIS

       isc-hmac-fixup {algorithm} {secret}

DESCRIPTION

       Versions of BIND 9 up to and including BIND 9.6 had a bug causing HMAC-SHA* TSIG keys which were longer than the digest length of the hash
       algorithm (i.e., SHA1 keys longer than 160 bits, SHA256 keys longer than 256 bits, etc) to be used incorrectly, generating a message
       authentication code that was incompatible with other DNS implementations.

       This bug has been fixed in BIND 9.7. However, the fix may cause incompatibility between older and newer versions of BIND, when using long
       keys.  isc-hmac-fixup modifies those keys to restore compatibility.

       To modify a key, run isc-hmac-fixup and specify the key's algorithm and secret on the command line. If the secret is longer than the digest
       length of the algorithm (64 bytes for SHA1 through SHA256, or 128 bytes for SHA384 and SHA512), then a new secret will be generated
       consisting of a hash digest of the old secret. (If the secret did not require conversion, then it will be printed without modification.)

SECURITY CONSIDERATIONS

       Secrets that have been converted by isc-hmac-fixup are shortened, but as this is how the HMAC protocol works in operation anyway, it does
       not affect security. RFC 2104 notes, "Keys longer than [the digest length] are acceptable but the extra length would not significantly
       increase the function strength."

SEE ALSO

       BIND 9 Administrator Reference Manual, RFC 2104.

AUTHOR

       Internet Systems Consortium

COPYRIGHT

       Copyright (C) 2010 Internet Systems Consortium, Inc. ("ISC")

BIND9								  January 5, 2010						 ISC-HMAC-FIXUP(1)
All times are GMT -4. The time now is 10:13 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy