bind9.16

rpms/bind9.16

Fork 0

Commit Graph

Author	SHA1	Message	Date
Petr Menšík	9c17975ebc	Allow runtime customization of CVE-2024-1737 limits Do not introduce new options into configuration file. But if limits are hit in unexpected way, allow tuning them by environment variables DNS_RDATASET_MAX_RECORDS and DNS_RBTDB_MAX_RTYPES. They accept number of maximum records of types. Both defaults to 100. These replaces max-records-per-type and max-types-per-name in later versions. But can be configured only by environment and can be configured only globally, not in each view or zone. Related: RHEL-50591	2024-08-08 00:53:05 +02:00

Author

SHA1

Message

Date

Petr Menšík

9c17975ebc

Allow runtime customization of CVE-2024-1737 limits

Do not introduce new options into configuration file. But if limits are
hit in unexpected way, allow tuning them by environment variables
DNS_RDATASET_MAX_RECORDS and DNS_RBTDB_MAX_RTYPES. They accept number of
maximum records of types. Both defaults to 100.

These replaces max-records-per-type and max-types-per-name in later
versions. But can be configured only by environment and can be
configured only globally, not in each view or zone.

Related: RHEL-50591

2024-08-08 00:53:05 +02:00

1 Commits