How to build bind from source on CentOS 4.x

CentOS 4 is now EOL (End-Of-Life). This means that CentOS is no longer pushing updates out and your server may now have vulnerable services on it. One commonly installed service is bind and there are currently two CVE vulnerabilities that have been released that affect the RPM version of bind shipped with CentOS 4.

Building Bind from source

cd /usr/src
wget ftp://ftp.isc.org/isc/bind9/9.9.1-P3/bind-9.9.1-P3.tar.gz
tar zxvf bind-9.9.1-P3.tar.gz
cd bind-9.9.1-P3
./configure --prefix=/usr --sysconfdir=/etc --disable-openssl-version-check
make
make install

It's as simple as that, note you should always try and get the latest version of bind. At the time of writing this article the latest version was 9.9.1-P3 as seen above!

Vulnerabilities affecting the shipped version of Bind