From owner-freebsd-stable  Wed Feb 14  8: 2: 4 2001
Delivered-To: freebsd-stable@freebsd.org
Received: from nebula.cybercable.fr (d217.dhcp212-126.cybercable.fr [212.198.126.217])
	by hub.freebsd.org (Postfix) with ESMTP id E085737B503
	for <stable@freebsd.org>; Wed, 14 Feb 2001 08:02:00 -0800 (PST)
Received: (from mux@localhost)
	by nebula.cybercable.fr (8.11.2/8.11.2) id f1EG0ML05755;
	Wed, 14 Feb 2001 17:00:22 +0100 (CET)
	(envelope-from mux)
Date: Wed, 14 Feb 2001 17:00:21 +0100
From: mux <mux@qualys.com>
To: Drew Sanford <lauasanf@bellsouth.net>
Cc: stable@freebsd.org
Subject: Re: Named crashing
Message-ID: <20010214170020.A588@nebula.cybercable.fr>
References: <EE976316F1109441957E739E180A5BF202D113@pics2000.hq.pics.com> <3A8AA108.7050007@bellsouth.net>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <3A8AA108.7050007@bellsouth.net>; from lauasanf@bellsouth.net on Wed, Feb 14, 2001 at 09:15:20AM -0600
Sender: owner-freebsd-stable@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

Drew Sanford wrote:
> Just to add to the mix this happened to me two days ago on my 
> 4.0-Release box - I've been meaning to upgrade it, but upgrading this 
> particular box is a real pain. I'd love to know what everyone comes up with.
> 
> Terry Rossi wrote:
> 
> > Michael,
> > 
> > I have been having the same problem with my bind installation
> > on both 3-5stable and now 4.2 release.
> > 
> > The only change in my environment has been the addition of a 
> > Windows 2000 domain and the use of dynamic updates into my unix
> > bind from the Domain controller on the Windows 2000 DNS.
> > 
> > Let me know if you come up with anything.
> > 
> >> Hi there.
> >> 
> >> I'm running the 3.X stable tree.
> >> 
> >> For some reason, my named crashes now.  It has never crashed 
> >> before, but
> >> recently it has been crashing after being up about 2 days.  
> >> 
> >> The message that shows up is:
> >> pid 37422 (named), uid 0: exited on signal 11 (core dumped)
> >> 
> >> Any ideas why this could be happening all of a sudden?

It might be because of attacks on your named. Be sure to run the latest BIND
8.2.3. Older versions are vulnerable and running a linux exploit on it would
make it crash (just a guess...).

Maxime Henrion
-- 
Don't be fooled by cheap finnish imitations ; BSD is the One True Code
Key fingerprint = F9B6 1D5A 4963 331C 88FC  CA6A AB50 1EF2 8CBE 99D6
Public Key : http://www.epita.fr/~henrio_m/


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message