Your message dated Sat, 21 Nov 2009 10:40:43 -0600
with message-id <[email protected]>
and subject line Re: Bug#320460: bind9: rndc stop does not kill the named
process
has caused the Debian Bug report #500277,
regarding bind9: rndc: connect failed: connection refused
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
500277: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=500277
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: bind9
Version: 1:9.2.1-2.woody.1
Severity: normal
Perhaps this bug could be related to #177960 and #169577.
I installed bind chrooted and "/etc/init.d/bind9 stop" returns
rndc: connect failed: connection refused
Direct rndc do the same.
I modified /etc/init.d/bind9 to get right conf file and all is workng now :
--------------------------------------------------
#!/bin/sh
PATH=/sbin:/bin:/usr/sbin:/usr/bin
# for a chrooted server: "-u nobody -t /var/lib/named"
OPTS="-u nobody -t /var/lib/named"
RNDCOPTS="-c /var/lib/named/etc/rndc.conf"
test -x /usr/sbin/named || exit 0
case "$1" in
start)
echo -n "Starting domain name service: named"
start-stop-daemon --start --quiet \
--pidfile /var/run/named.pid --exec /usr/sbin/named -- $OPTS
echo "."
;;
stop)
echo -n "Stopping domain name service: named"
/usr/sbin/rndc $RNDCOPTS stop
echo "."
;;
reload)
/usr/sbin/rndc $RNDCOPTS reload
;;
restart|force-reload)
$0 stop
sleep 2
$0 start
;;
*)
echo "Usage: /etc/init.d/bind {start|stop|reload|restart|force-reload}"
>&2
exit 1
;;
esac
exit 0
----------------------------------------------------
-- System Information
Debian Release: 3.0
Kernel Version: Linux cauchy 2.4.18 #2 SMP Tue Oct 7 19:55:33 CEST 2003 i586
unknown
Versions of the packages bind9 depends on:
ii libc6 2.2.5-11.5 GNU C Library: Shared libraries and Timezone
ii libdns5 9.2.1-2.woody. DNS Shared Library used by BIND
ii libisc4 9.2.1-2.woody. ISC Shared Library used by BIND
ii libisccc0 9.2.1-2.woody. Command Channel Library used by BIND
ii libisccfg0 9.2.1-2.woody. Config File Handling Library used by BIND
ii liblwres1 9.2.1-2.woody. Lightweight Resolver Library used by BIND
ii libssl0.9.6 0.9.6c-2.woody SSL shared libraries
ii netbase 4.07 Basic TCP/IP networking system
--- Begin /etc/init.d/bind9 (modified conffile)
#!/bin/sh
PATH=/sbin:/bin:/usr/sbin:/usr/bin
OPTS="-u nobody -t /var/lib/named"
RNDCOPTS="-c /var/lib/named/etc/rndc.conf"
test -x /usr/sbin/named || exit 0
case "$1" in
start)
echo -n "Starting domain name service: named"
start-stop-daemon --start --quiet \
--pidfile /var/run/named.pid --exec /usr/sbin/named -- $OPTS
echo "."
;;
stop)
echo -n "Stopping domain name service: named"
/usr/sbin/rndc $RNDCOPTS stop
echo "."
;;
reload)
/usr/sbin/rndc $RNDCOPTS reload
;;
restart|force-reload)
$0 stop
sleep 2
$0 start
;;
*)
echo "Usage: /etc/init.d/bind {start|stop|reload|restart|force-reload}"
>&2
exit 1
;;
esac
exit 0
--- End /etc/init.d/bind9
--- Begin /etc/bind/named.conf (modified conffile)
// This is the primary configuration file for the BIND DNS server named.
//
// Please read /usr/share/doc/bind9/README.Debian for information on the
// structure of BIND configuration files in Debian, *BEFORE* you customize
// this configuration file.
//
acl "interne" {
192.168.10.0/24;
localhost;
};
key "rndc-key" {
algorithm hmac-md5;
secret "agZxAxpON3m1w4MKG0QFrg==";
};
controls {
inet 127.0.0.1 port 953
allow { interne; };
// allow { interne; } keys { "rndc-key"; };
};
options {
allow-transfer { interne; };
allow-recursion { interne; };
allow-query { interne; };
directory "/var/cache/bind";
// If there is a firewall between you and nameservers you want
// to talk to, you might need to uncomment the query-source
// directive below. Previous versions of BIND always asked
// questions using port 53, but BIND 8.1 and later use an unprivileged
// port by default.
query-source address * port 53;
// If your ISP provided one or more IP addresses for stable
// nameservers, you probably want to use them as forwarders.
// Uncomment the following block, and insert the addresses replacing
// the all-0's placeholder.
forwarders {
194.149.160.1;
195.154.223.1;
// 195.154.223.1;
// 212.43.206.2;
// 212.43.206.3;
};
auth-nxdomain no; # conform to RFC1035
};
logging {
category lame-servers { null; };
};
// prime the server with knowledge of the root servers
zone "." in {
type hint;
file "/etc/bind/db.root";
};
// be authoritative for the localhost forward and reverse zones, and for
// broadcast zones as per RFC 1912
zone "chaos" in {
type master;
file "/etc/bind/db.chaos";
allow-query { none; };
};
zone "localhost" in {
type master;
file "/etc/bind/db.local";
};
zone "127.in-addr.arpa" in {
type master;
file "/etc/bind/db.127";
};
zone "0.in-addr.arpa" in {
type master;
file "/etc/bind/db.0";
};
zone "255.in-addr.arpa" in {
type master;
file "/etc/bind/db.255";
};
// add entries for other zones below here
zone "thalix.net" in {
type master;
file "/etc/bind/db.thalix.net";
};
//zone "thalix.com" in {
// type master;
// file "/etc/bind/db.thalix.com";
//};
//zone "thalix.fr" in {
// type master;
// file "/etc/bind/db.thalix.fr";
//};
zone "192.in-addr.arpa" in {
type master;
file "/etc/bind/db.192";
};
--- End /etc/bind/named.conf
--- Begin /etc/bind/db.local (modified conffile)
;
; BIND data file for local loopback interface
;
$TTL 604800
@ IN SOA localhost. root.localhost. (
2 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ IN NS localhost.
localhost IN A 127.0.0.1
localhost. IN A 127.0.0.1
--- End /etc/bind/db.local
--- Begin /etc/bind/db.root (modified conffile)
; This file holds the information on root name servers needed to
; initialize cache of Internet domain name servers
; (e.g. reference this file in the "cache . <file>"
; configuration file of BIND domain name servers).
;
; This file is made available by InterNIC
; under anonymous FTP as
; file /domain/named.root
; on server FTP.INTERNIC.NET
;
; last update: Nov 5, 2002
; related version of root zone: 2002110501
;
;
; formerly NS.INTERNIC.NET
;
. 3600000 IN NS A.ROOT-SERVERS.NET.
A.ROOT-SERVERS.NET. 3600000 A 198.41.0.4
;
; formerly NS1.ISI.EDU
;
. 3600000 NS B.ROOT-SERVERS.NET.
B.ROOT-SERVERS.NET. 3600000 A 128.9.0.107
;
; formerly C.PSI.NET
;
. 3600000 NS C.ROOT-SERVERS.NET.
C.ROOT-SERVERS.NET. 3600000 A 192.33.4.12
;
; formerly TERP.UMD.EDU
;
. 3600000 NS D.ROOT-SERVERS.NET.
D.ROOT-SERVERS.NET. 3600000 A 128.8.10.90
;
; formerly NS.NASA.GOV
;
. 3600000 NS E.ROOT-SERVERS.NET.
E.ROOT-SERVERS.NET. 3600000 A 192.203.230.10
;
; formerly NS.ISC.ORG
;
. 3600000 NS F.ROOT-SERVERS.NET.
F.ROOT-SERVERS.NET. 3600000 A 192.5.5.241
;
; formerly NS.NIC.DDN.MIL
;
. 3600000 NS G.ROOT-SERVERS.NET.
G.ROOT-SERVERS.NET. 3600000 A 192.112.36.4
;
; formerly AOS.ARL.ARMY.MIL
;
. 3600000 NS H.ROOT-SERVERS.NET.
H.ROOT-SERVERS.NET. 3600000 A 128.63.2.53
;
; formerly NIC.NORDU.NET
;
. 3600000 NS I.ROOT-SERVERS.NET.
I.ROOT-SERVERS.NET. 3600000 A 192.36.148.17
;
; operated by VeriSign, Inc.
;
. 3600000 NS J.ROOT-SERVERS.NET.
J.ROOT-SERVERS.NET. 3600000 A 192.58.128.30
;
; housed in LINX, operated by RIPE NCC
;
. 3600000 NS K.ROOT-SERVERS.NET.
K.ROOT-SERVERS.NET. 3600000 A 193.0.14.129
;
; operated by IANA
;
. 3600000 NS L.ROOT-SERVERS.NET.
L.ROOT-SERVERS.NET. 3600000 A 198.32.64.12
;
; housed in Japan, operated by WIDE
;
. 3600000 NS M.ROOT-SERVERS.NET.
M.ROOT-SERVERS.NET. 3600000 A 202.12.27.33
; End of File
--- End /etc/bind/db.root
--- End Message ---
--- Begin Message ---
Version: 1:9.6.1.dfsg.P1-1
--
Fixed so that named gets killed with prejudice if needed in stop. (Dup of
Bug#536487)
lamont
--- End Message ---
