Your message dated Sun, 22 Oct 2017 13:19:11 +0200
with message-id
<1508671151.815349.1146906880.773a8...@webmail.messagingengine.com>
and subject line Closing bugs in old-old-stable bind9 versions
has caused the Debian Bug report #234167,
regarding bind: named went bezerk and filled up my entire system disk with log
messages
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
234167: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=234167
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: bind
Version: 1:8.4.4-1
Severity: critical
Justification: breaks unrelated software
Named deposited tens of thousands of log messages in /var/log/syslog
and /var/log/daemon.log. They all look like this:
Feb 22 08:59:03 localhost named[1045]: sysquery: no addrs found for root NS
(I.ROOT-SERVERS.NET)
Feb 22 08:59:03 localhost named[1045]: sysquery: no addrs found for root NS
(J.ROOT-SERVERS.NET)
Feb 22 08:59:03 localhost named[1045]: sysquery: no addrs found for root NS
(K.ROOT-SERVERS.NET)
Feb 22 08:59:03 localhost named[1045]: sysquery: no addrs found for root NS
(L.ROOT-SERVERS.NET)
Feb 22 08:59:03 localhost named[1045]: sysquery: no addrs found for root NS
(A.ROOT-SERVERS.NET)
Feb 22 08:59:03 localhost named[1045]: sysquery: no addrs found for root NS
(C.ROOT-SERVERS.NET)
As a result, I have 621 megabytes of syslog and a similar amount of
daemon.log . And (I should mention) old log files are around.
This ren me out of disk space and made the system non-functional
(as /tmp became unwriteable, etc...)
I attach the beginings of the problem (an extract from syslog.0):
Feb 21 21:26:01 localhost /USR/SBIN/CRON[4361]: (gpk) CMD
(/home/admin/freedns.afraid.org/self_ping.sh)
Feb 21 21:27:40 localhost kernel: [FIAIF_REJECT]:IN=eth0 OUT=
MAC=00:03:47:ed:bb:13:00:0a:8b:69:fc:54:08:00 SRC=64.32.179.43
DST=62.254.145.79 LEN=69 TOS=0x10 PREC=0x00 TTL=51 ID=0 DF PROTO=UDP SPT=53
DPT=32768 LEN=49
Feb 21 21:30:01 localhost /USR/SBIN/CRON[4427]: (root) CMD (/bin/sync)
Feb 21 21:34:36 localhost named[1045]: Cleaned cache of 11 RRsets
Feb 21 21:34:36 localhost named[1045]: USAGE 1077399276 1077370476
CPU=0.12u/0.08s CHILDCPU=0u/0s
Feb 21 21:34:36 localhost named[1045]: NSTATS 1077399276 1077370476 A=241
PTR=100 AAAA=391
Feb 21 21:34:36 localhost named[1045]: XSTATS 1077399276 1077370476 RR=404
RNXD=86 RFwdR=82 RDupR=3 RFail=17 RFErr=2 RErr=0 RAXFR=0 RLame=1 ROpts=0
SSysQ=104 SAns=728 SFwdQ=275 SDupQ=31 SErr=0 RQ=732 RIQ=0 RFwdQ=275 RDupQ=2
RTCP=0 SFwdR=82 SFail=0 SFErr=0 SNaAns=721 SNXD=287 RUQ=0 RURQ=0 RUXFR=0 RUUpd=0
Feb 21 21:35:01 localhost /USR/SBIN/CRON[4460]: (root) CMD (/bin/sync)
Feb 21 21:35:17 localhost kernel: [FIAIF_REJECT]:IN=eth0 OUT=
MAC=00:03:47:ed:bb:13:00:0a:8b:69:fc:54:08:00 SRC=61.221.29.182
DST=62.254.145.79 LEN=48 TOS=0x00 PREC=0x00 TTL=107 ID=47854 DF PROTO=TCP
SPT=2698 DPT=6129 WINDOW=65535 RES=0x00 SYN URGP=0
Feb 21 21:38:01 localhost /USR/SBIN/CRON[4481]: (mail) CMD ( if [ -x
/usr/sbin/exim -a -f /etc/exim/exim.conf ]; then /usr/sbin/exim -q ; fi)
Feb 21 21:39:01 localhost /USR/SBIN/CRON[4497]: (gpk) CMD
(/home/admin/freedns.afraid.org/self_ping.sh)
Feb 21 21:40:01 localhost /USR/SBIN/CRON[4523]: (root) CMD (/bin/sync)
Feb 21 21:45:01 localhost /USR/SBIN/CRON[4570]: (root) CMD (/bin/sync)
Feb 21 21:46:58 localhost dhcpd: DHCPREQUEST for 192.168.1.201 from
00:e0:4c:7d:bd:c9 via eth2
Feb 21 21:46:58 localhost dhcpd: DHCPACK on 192.168.1.201 to 00:e0:4c:7d:bd:c9
via eth2
Feb 21 21:50:01 localhost /USR/SBIN/CRON[4588]: (root) CMD (/bin/sync)
Feb 21 21:53:01 localhost /USR/SBIN/CRON[4602]: (mail) CMD ( if [ -x
/usr/sbin/exim -a -f /etc/exim/exim.conf ]; then /usr/sbin/exim -q ; fi)
Feb 21 21:55:01 localhost /USR/SBIN/CRON[4618]: (root) CMD (/bin/sync)
Feb 21 21:56:52 localhost named[1045]: sysquery: no addrs found for root NS
(G.ROOT-SERVERS.NET)
Feb 21 21:56:52 localhost named[1045]: sysquery: no addrs found for root NS
(H.ROOT-SERVERS.NET)
Feb 21 21:56:52 localhost named[1045]: sysquery: no addrs found for root NS
(I.ROOT-SERVERS.NET)
Feb 21 21:56:52 localhost named[1045]: sysquery: no addrs found for root NS
(J.ROOT-SERVERS.NET)
Feb 21 21:56:52 localhost named[1045]: sysquery: no addrs found for root NS
(K.ROOT-SERVERS.NET)
Feb 21 21:56:52 localhost named[1045]: sysquery: no addrs found for root NS
(L.ROOT-SERVERS.NET)
Feb 21 21:56:52 localhost named[1045]: sysquery: no addrs found for root NS
(M.ROOT-SERVERS.NET)
Feb 21 21:56:52 localhost named[1045]: sysquery: no addrs found for root NS
(A.ROOT-SERVERS.NET)
I also attach relevant sections of several configuration
files. Deletions are marked with ... .
First, /etc/named.conf:
// This is the primary configuration file for the BIND DNS server named.
...
include "/etc/bind/named.conf.options";
// reduce log verbosity on issues outside our control
logging {
category lame-servers { null; };
category cname { null; };
};
// prime the server with knowledge of the root servers
zone "." {
type hint;
file "/etc/bind/db.root";
};
// be authoritative for the localhost forward and reverse zones, and for
// broadcast zones as per RFC 1912
zone "localhost" {
type master;
file "/etc/bind/db.local";
};
zone "127.in-addr.arpa" {
type master;
file "/etc/bind/db.127";
};
zone "0.in-addr.arpa" {
type master;
file "/etc/bind/db.0";
};
zone "255.in-addr.arpa" {
type master;
file "/etc/bind/db.255";
};
// add entries for other zones below here
include "/etc/bind/named.conf.local";
And /etc/bind/db.root (which is stock Debian, I believe):
; <<>> DiG 8.2 <<>> @f.root-servers.net . ns
; (1 server found)
;; res options: init recurs defnam dnsrch
;; got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 10
;; flags: qr aa rd; QUERY: 1, ANSWER: 13, AUTHORITY: 0, ADDITIONAL: 13
;; QUERY SECTION:
;; ., type = NS, class = IN
;; ANSWER SECTION:
. 6D IN NS G.ROOT-SERVERS.NET.
...
. 6D IN NS F.ROOT-SERVERS.NET.
;; ADDITIONAL SECTION:
G.ROOT-SERVERS.NET. 5w6d16h IN A 192.112.36.4
...
F.ROOT-SERVERS.NET. 5w6d16h IN A 192.5.5.241
;; Total query time: 10 msec
...
And /etc/bind/named.conf.options:
options {
directory "/var/cache/bind";
// If there is a firewall between you and nameservers you want
// ...
// the all-0's placeholder.
forward first;
forwarders {
194.168.8.100; // NTL
// 194.168.4.100; // NTL
64.32.179.43; // ns1.xoba.com
64.240.129.21; // ns0.Xoba.com
};
};
Next, /etc/bind/named.conf.local :
// add entries for other zones below here
zone "168.192.in-addr.arpa" {
type master;
file "/etc/bind/db.168.192";
allow-update {192.168.1.1;};
};
zone "local" {
type master;
file "/etc/bind/db.semilocal";
allow-update {192.168.1.1;};
};
-- System Information:
Debian Release: testing/unstable
Architecture: i386
Kernel: Linux gpk 2.4.25 #3 Sat Feb 21 01:49:37 GMT 2004 i686
Locale: LANG=C, LC_CTYPE=C
Versions of packages bind depends on:
ii libc6 2.3.2.ds1-11 GNU C Library: Shared libraries an
ii netbase 4.15 Basic TCP/IP networking system
-- no debconf information
--- End Message ---
--- Begin Message ---
Version: 1:9.10.3.dfsg.P4-12.3
Hi,
the bind9 bug list grew too much and the Debian BIND team cannot
simply test all the reported bugs against versions not in stable, so
this is mass bug close, as either the version is no longer relevant
(because of old-old-stable 9.8.x or old-stable 9.9.5 or even older
version of bind9) or the bug was already fixed.
However, if you can reproduce the bug with a current version in stable,
please use Debian BTS 'found <bug> <version_you_reproduced_the_issue>'
command to retag the bug and reopen it.
Cheers,
Ondrej
signature.asc
Description: PGP signature
--- End Message ---
