From owner-freebsd-security Wed Jun 16 12:21: 7 1999 Delivered-To: freebsd-security@freebsd.org Received: from rover.village.org (rover.village.org [204.144.255.49]) by hub.freebsd.org (Postfix) with ESMTP id 8DD2314C59 for ; Wed, 16 Jun 1999 12:21:03 -0700 (PDT) (envelope-from imp@harmony.village.org) Received: from harmony.village.org (harmony.village.org [10.0.0.6]) by rover.village.org (8.9.3/8.9.3) with ESMTP id NAA51660; Wed, 16 Jun 1999 13:20:55 -0600 (MDT) (envelope-from imp@harmony.village.org) Received: from harmony.village.org (localhost.village.org [127.0.0.1]) by harmony.village.org (8.9.3/8.8.3) with ESMTP id NAA01054; Wed, 16 Jun 1999 13:20:52 -0600 (MDT) Message-Id: <199906161920.NAA01054@harmony.village.org> To: Dag-Erling Smorgrav Subject: Re: named timeouts Cc: junkmale@xtra.co.nz, security@FreeBSD.ORG, Mike Nowlin In-reply-to: Your message of "16 Jun 1999 12:59:38 +0200." References: "Dan Langille"'s message of "Wed, 16 Jun 1999 07:45:31 +1200" <19990616100254.GZCQ311284.mta2-rme@wocker> Date: Wed, 16 Jun 1999 13:20:52 -0600 From: Warner Losh Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org In message Dag-Erling Smorgrav writes: : Ah, these are log_in_vain messages. What they mean is that named isn't : listening on 127.0.0.1. You need to add localhost or localnets to the : allow-query clause in named.conf (either in the options section or in : each zone). This is not necessarily correct. I have log in vain set on my machine and I get them sometimes. I've been able to recreate this problem by looking up a previously unknown DNS entry. This causes a query to go out to the big bad internet. In the mean while, the DNS client times out and closes the socket it was listening for its answer on. A short time later, the answer comes back. The packet is tossed and logged. When the client and server are the same machine, this can cause confusion. Warner To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message