From owner-freebsd-questions Mon May 14 19:34:27 2001 Delivered-To: freebsd-questions@freebsd.org Received: from mail.freebsd-corp-net-guide.com (mail.freebsd-corp-net-guide.com [206.29.169.15]) by hub.freebsd.org (Postfix) with ESMTP id 9F9C337B424 for ; Mon, 14 May 2001 19:34:16 -0700 (PDT) (envelope-from tedm@toybox.placo.com) Received: from tedm.placo.com (nat-rtr.freebsd-corp-net-guide.com [206.29.168.154]) by mail.freebsd-corp-net-guide.com (8.11.1/8.11.1) with SMTP id f4F2Y4k43147; Mon, 14 May 2001 19:34:05 -0700 (PDT) (envelope-from tedm@toybox.placo.com) From: "Ted Mittelstaedt" To: "Kris Kennaway" Cc: "John Baxter" , "Dan Mahoney, System Admin" , Subject: RE: onitoring named Date: Mon, 14 May 2001 19:34:04 -0700 Message-ID: <001201c0dce7$821145a0$1401a8c0@tedm.placo.com> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook 8.5, Build 4.71.2173.0 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.3155.0 In-Reply-To: <20010514025811.A32800@xor.obsecurity.org> Importance: Normal Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG >-----Original Message----- >From: Kris Kennaway [mailto:kris@obsecurity.org] >Sent: Monday, May 14, 2001 2:58 AM >To: Ted Mittelstaedt >Cc: John Baxter; Dan Mahoney, System Admin; Kris Kennaway; >questions@FreeBSD.ORG >Subject: Re: onitoring named > > >On Mon, May 14, 2001 at 12:52:58AM -0700, Ted Mittelstaedt wrote: > >> Today, the most commmon response I see to nameserver problems is >> "oh, your nameserver MUST have been hacked". This is an exciting, sexy >> answer that just about anyone can give. > >Which -- so very inconveniently for your thesis -- happens to be true. > I'm not sure if your agreeing that this is the most commonly given answer, or your stating that most nameserver problems are a result of crack attempts. >> It requires no real understanding of DNS by either the giver or the >> receiver. I guess I'm just getting sick and tired of hearing it >> because my own experience is that most likely the problem is that >> the DNS server has, in fact, NOT been cracked, and that the problem >> is something more subtle. > >And when the originator complains "my named is dying" and gives no >extra details, we're all supposed to put on our magic Telepathy >Beanies and divine up the problem? Of course! Just like when the questioner says "I loaded FreeBSD and it crashed" Yeah, that's definitely the step >I'm missing here. Thanks, suggestion noted! > :-) Your right, of course that a question dashed off, with no additional information given, is hardly worth more than an exciting sexy answer, that anyone can give and almost devoid of information. It's espically funny when they don't even give the version of bind and expect us to know that. But, I was only trying to point out that we need to get more creative in our "one liner responses to one liner questions" and that playing the security angle has gotten so dull. Maybe we ought to tell the next person who complains that their nameserver is crashing, that this means their ram is bad and to go replace it all. ;-) Ted To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message