The Internet Software Consortium has recently announced the release of three new versions of its widely used DNS server software, BIND: 9.18.42, 9.20.16, and the experimental 9.21.15. These updates are designed to enhance the performance and reliability of BIND, a critical tool for system administrators managing DNS infrastructure globally.

BIND 9.21.15 introduces a new rndc command called 'showconf,' which allows administrators to view their current server configuration with flexibility, offering three output options: user, built-in, and effective. This version also updates the named-checkconf utility with two new flags, -b and -e, for displaying internal defaults and the final configuration that would apply when loading a specific config file. Additionally, it adds support for Extended DNS Error code 24 (Invalid Data), as specified in RFC 8914 section 4.25.

BIND 9.20.16 places a strong emphasis on bug fixes and addressing known issues. A significant improvement addresses validation failures in zones that utilize mixed DNSSEC algorithms, ensuring that the server manages supported and unsupported algorithms correctly while looking for signing keys. Updates to the dnssec-keygen tool enhance its handling of KEY ID collisions during key generation. Other improvements in this version enhance the functionality of the dnssec-verify command and prevent assertion failures that could occur during specific dig operations, particularly with the EDNS0 flag or on certain Windows versions.

BIND 9.18.42 also brings stability improvements, including a change similar to that in 9.20.16, which proactively ignores unsupported DNSSEC algorithms when searching for signing keys, thereby preventing validation issues with mixed algorithm zones.

In summary, these new versions of BIND address user-reported problems and introduce practical tools to facilitate daily operations and debugging, reinforcing BIND's position as a robust and reliable choice for DNS management. System administrators can download these updates from the ISC software download page.

As BIND continues to evolve, future releases may further enhance its capabilities, including more advanced features for monitoring and management, improved security measures, and greater support for emerging DNS protocols and standards. This ongoing development is crucial in the rapidly changing landscape of internet infrastructure, where reliability and performance remain paramount

BIND 9.18.42, 9.20.16, and 9.21.15 released

The Internet Software Consortium has released three new versions of BIND: 9.18.42, 9.20.16, and 9.21.15, which aim to refine the DNS server's performance and reliability. Each version brings specific improvements, including a new rndc command in 9.21.15 that allows administrators to view their running server configuration, as well as bug fixes and feature updates in 9.20.16 and 9.18.42. The updates also include support for Extended DNS Error code 24, improved handling of KEY ID collisions, and prevention of assertion failures during specific dig operations. These new releases can be downloaded from the ISC software download page, ensuring that BIND remains a solid and functional choice for system administrators managing critical DNS infrastructure globally.

BIND 9.18.42, 9.20.16, and 9.21.15 released @ Linux Compatible