Updating Bind?

[tadrim]

HI Everyone,

I'm trying to update bind on my server as it is old/vulnerable, I'm using Centos 5.11 and the version of bind is bind-9.3

When I run a yum update bin all I get is the following:

No Packages marked for Update,

Is this the highest version of bind available for Centos 5? I believe not, would this be the repo not giving the latest version?

Thanks in Advance!

[MartinR]

It is the highest level of bind for CentOS 5. You need to upgrade to CentOS 6.7 or 7.2 to pick up any newer images. To move between major versions you will need to do a fresh install, an in place update will not work.

[tadrim]

Hi There,

Thanks for clarifying, Is there anywhere to get the list of the latest versions of software supported for centos 5 for future reference?

Thanks!

[MartinR]

Code: Select all

yum list

will produce pages of output showing what is available with your current repositories.

Please be aware that CentOS 5 will only be updated with critical security patches, and all support stops next year. Unless there is a very good reason to stay with a 10 year old OS, you should consider migrating to CentOS 6 (currently 6.7) or CentOS 7 (currently 7.2 aka 7.1511 IIRC). CentOS 5 -> 6 is reasonably straight forward, there are a few minor "gotchas" but generally there is good compatibility. CentOS 7 is a different beast which will require significant study. On the other hand, CentOS 6 is supported until at least 2020 but CentOS 7 until 2014 (IIRC).

[TrevorH]

However, do not rely on just version numbers as Redhat backport fixes to the distro versions. Use rpm -q --changelog bind | less to look at the rpm changelog and see if the CVE(s) you are interested in are listed as fixed. Also check the RH CVE pages for the particular ones you're interested in as often the RH versions may not be vulnerable in the first place - e.g https://access.redhat.com/security/cve/CVE-yyyy-nnnn