Date: Thu, 23 Oct 2003 22:18:35 -0600 From: Brett Glass <brett@lariat.org> To: "David G. Andersen" <danderse@cs.utah.edu>, Garance A Drosihn <drosih@rpi.edu> Cc: security@freebsd.org Subject: Re: /var partition overflow (due to spyware?) in FreeBSD default install Message-ID: <6.0.0.22.2.20031023221633.03a53358@localhost> In-Reply-To: <20031023204646.A61063@cs.utah.edu> References: <6.0.0.22.2.20031023162326.04c1e008@localhost> <p0600201bbbbe19a62f97@[128.113.24.47]> <6.0.0.22.2.20031023183427.04e18d10@localhost> <p0600201cbbbe2f1e37c5@[128.113.24.47]> <20031023204646.A61063@cs.utah.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
At 08:46 PM 10/23/2003, David G. Andersen wrote: >the problem is very obviously an excess of messages from bind. >This bug report should go to the ISC folks. Indeed. Or perhaps we can integrate a patch into FreeBSD and then forward it up to ISC. >No daemon should >be spewing out log messages at the _incredible_ rate that >bind does when it decides it doesn't like what it's getting >in this context. The same bug can be triggered by using a >forwarding nameserver that bind doesn't like. Interesting. What does BIND "not like" about certain forwarders? >The immediate question to ask is, "is this fixed in bind9?" That's only the immediate question if FreeBSD moves to BIND 9. Otherwise, the question (at least in this forum) is, how does FreeBSD patch it until or unless it goes to BIND 9? --Brett
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?6.0.0.22.2.20031023221633.03a53358>