From owner-freebsd-security  Wed Jan 31 20:35:46 2001
Delivered-To: freebsd-security@freebsd.org
Received: from yez.hyperreal.org (gate.sp.collab.net [64.211.228.36])
	by hub.freebsd.org (Postfix) with SMTP id 8FB0837B4EC
	for <freebsd-security@FreeBSD.ORG>; Wed, 31 Jan 2001 20:35:29 -0800 (PST)
Received: (qmail 3993 invoked by uid 1000); 1 Feb 2001 04:36:05 -0000
Received: from localhost (sendmail-bs@127.0.0.1)
  by localhost with SMTP; 1 Feb 2001 04:36:05 -0000
Date: Wed, 31 Jan 2001 20:36:05 -0800 (PST)
From: Brian Behlendorf <brian@collab.net>
X-X-Sender:  <brian@localhost>
To: Mike Silbersack <silby@silby.com>
Cc: <freebsd-security@FreeBSD.ORG>
Subject: Re: FreeBSD Security Advisory: FreeBSD-SA-01:18.bind
In-Reply-To: <Pine.BSF.4.31.0101311721500.563-100000@achilles.silby.com>
Message-ID: <Pine.BSF.4.31.0101312034590.729-100000@localhost>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

On Wed, 31 Jan 2001, Mike Silbersack wrote:
> On Wed, 31 Jan 2001, Alfred Perlstein wrote:
>
> > If it breaks HUP, then not really. :)
> >
> > I'm not sure how bind handles restarts, but even if it exec(2)s over
> > itself it can track the fd open for its socket and shouldn't have to
> > rebind it.
>
> I don't see any complaints from 8.2.3 running -u bind -g bind when I HUP
> it here.

killall -HUP named is fine.  "ndc restart" is when it restarts as root,
not as -u bind.  It would be nice to have ndc "know" about named_flags.

	Brian





To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message