From owner-freebsd-questions  Sat May 12  9:46:12 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from prime.gushi.org (prime.gushi.org [208.23.118.172])
	by hub.freebsd.org (Postfix) with ESMTP id 0710137B423
	for <questions@freebsd.org>; Sat, 12 May 2001 09:46:08 -0700 (PDT)
	(envelope-from danm@prime.gushi.org)
Received: from localhost (danm@localhost)
	by prime.gushi.org (8.11.3/8.11.3) with ESMTP id f4CGn7P80486;
	Sat, 12 May 2001 12:49:07 -0400 (EDT)
Date: Sat, 12 May 2001 12:49:07 -0400 (EDT)
From: "Dan Mahoney, System Admin" <danm@prime.gushi.org>
To: Kris Kennaway <kris@obsecurity.org>
Cc: questions@freebsd.org
Subject: Re: onitoring named
In-Reply-To: <20010511223649.A37725@xor.obsecurity.org>
Message-ID: <Pine.BSF.4.21.0105121242530.39121-100000@prime.gushi.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Fri, 11 May 2001, Kris Kennaway wrote:

> On Sat, May 12, 2001 at 01:17:56AM -0400, Dan Mahoney, System Admin wrote:
> > Hi all.  I noticed recently that I've had a high occurence of named dying
> > on various machines.  What would I put in a crontab to restart it only if
> > it's not running?  I'm not sure how to format the if statement.

Okay, on a freeBSD 3.2-Release server I found an implementation of NDC
that was written as a (buggy, but easily fixed) shell script.  I have
installed this on my 4.2 boxen as "shndc", and run it from a crontab every
20 minutes.

My nameservers are both very secure dedicated machines that, other than
webmin (boss's requirement) run nothing but DNS service.  Occasionally I
see them die on signal 11, more often with no explanation at all.  These
are the latest version, running in the most secure fashion I can get info
on. (chrooted as an unprivileged user, with quotas).  Has anyone else had
problems with named dying?

-Dan

> 
> Aren't you at all worried WHY they're dying?  I bet you're running
> older versions than 8.2.3-RELEASE and you're suffering the effects of
> (attempted, possibly successful) root penetration.
> 
> Kris
> 

--

I am now a lesbian.  I don't like men, but thank you for writing.

-Reply to my response to a personal ad, May 30th, 1998.


--------Dan Mahoney--------
Techie,  Sysadmin,  WebGeek
Gushi on efnet/undernet IRC
ICQ: 13735144   AIM: LarpGM
Web: http://prime.gushi.org
finger danm@prime.gushi.org 
for pgp public key and tel#
---------------------------



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message