Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-78035

RFE - bind 9.20 for gov Zero-Trust initiative for DoT/DoH requirements

Linking RHIVOS CVEs to...Migration: Automation ...SWIFT: POC ConversionSync from "Extern...XMLWordPrintable

    • Icon: Story Story
    • Resolution: Unresolved
    • Icon: Undefined Undefined
    • None
    • rhel-9.5
    • bind
    • None
    • Critical
    • rhel-net-perf
    • ssg_core_services
    • 0
    • False
    • False
    • Hide

      None

      Show
      None
    • None
    • None
    • None
    • None
    • None

      Description of problem:
      Customer is requesting bind 9.20.x (minimum version) as part of gov Zero-Trust initiative for DoT/DoH requirement (originally this was for 9.18, but RHEL-6450 mentions 9.18 did not have DoT or DoH for forwards, and thus would not have fully complied with the gov Zero-Trust initiative for DoT/DoH requirements, and we would have needed to wait for 9.20 which had this functionality, which is mentioned in RHEL-6450 that it was released 7-23-2024))

      Version-Release number of selected component (if applicable):
      RHEL8: 9.11.26
      RHEL9: 9.16.23

      we assume this would probably end up in Fedora 37, and may not be in 9.1, probably have to wait for 9.2 rebase

      today, there is at least 9.18.x in EPEL, but which does not have full DoT/DoH compliance, and customer wants to only use a Red Hat supported version (and a version that is tested with IdM/IPA, which is where this is being used today, along with additional agency bind only servers)

              pemensik@redhat.com Petr Mensik
              RHN-GPS-dsimes David Simes
              Petr Mensik Petr Mensik
              rhel-cs-infra-services-qe rhel-cs-infra-services-qe rhel-cs-infra-services-qe rhel-cs-infra-services-qe
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Created:
                Updated: