pdns-recursor versions prior to 3.3 has a broken packetcache which causes dangerously misleading results for certain types of lookups like spamassassin DNSBL or URIBL. This can cause degraded performance with spam filtering. The breakage is very sublte and difficult to realize it is happening, so most sysadmins have no idea they are being effected. pdns-recursor must be upgraded to 3.3. Please simply match the EPEL6 version. It will work just fine.
Would you like me to do the build on your behalf?
Crap. It appears we cannot upgrade Boost which is required to build the newer version of pdns-recursor. We may be better off withdrawing pdns-recursor entirely from EPEL5 because of this subtle hidden breakage. Any opinions?
Hey Warren, If it's a simple fix maybe we can backport it? Do you have an upstream bug nr? Thanks, Ruben
I am not aware of a simple fix.
If this only breaks certain types of lookups isn't it a bit drastic to pull it from EPEL5? It's been in there for years and this is the first bug report I get about it. If we pull it, we don't give users any other choice but to upgrade to EPEL6. On the other hand, if we leave it in how do we communicate that this can break your spamassassin setup?
pdns-recursor-3.3-1.el5 has been submitted as an update for Fedora EPEL 5. https://admin.fedoraproject.org/updates/pdns-recursor-3.3-1.el5
Package pdns-recursor-3.3-1.el5: * should fix your issue, * was pushed to the Fedora EPEL 5 testing repository, * should be available at your local mirror within two days. Update it with: # su -c 'yum update --enablerepo=epel-testing pdns-recursor-3.3-1.el5' as soon as you are able to. Please go to the following url: https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0769/pdns-recursor-3.3-1.el5 then log in and leave karma (feedback).
pdns-recursor-3.3-1.el5 has been pushed to the Fedora EPEL 5 stable repository. If problems still persist, please make note of it in this bug report.