Da uma lida !!
-----------------------
http://mail.projecto-oasis.cx:81/Lists/seguranca/Message/684.html
-----------------------
Leonardo B. Cuquejo wrote:
Amigos da lista estou querendo apenas alertar sobre algo estranho que esta acontecendo com o bind.Bem logo depois que saiu o Security Advisorie do bind, segui a opcao que ele dava de atualizar a versao do freebsd para stable... fiz a atualizacao meu bind ficou 8.3.3 com patch, coloquei dentro a opcao: allow-recursion { 10.0.0.0/8; }; // Para minha rede Tudo como manda o figurino. Mas sexta feira ele amanheceu down. Olhei os logs, as 4h da manha o meu trafego de entrada estava la em cima e meu bind: Nov 20 04:26:07 exu named[9254]: late CNAME in answer section for discovery.umce.cl A from [146.83.132.8].53 Nov 20 04:26:11 exu named[9254]: late CNAME in answer section for discovery.umce.cl A from [146.83.183.94].53 Nov 20 05:15:33 exu named[9254]: late CNAME in answer section for cc.ndhu.edu.tw A from [140.111.1.20].53 Nov 20 05:55:32 exu named[9254]: savedata: memget Nov 20 05:55:32 exu named[9254]: savedata: memget Nov 20 05:55:32 exu /kernel: pid 9254 (named), uid 53: exited on signal 6 Ele caiu depois de um DoS. Fiquei com raiva e atualizei pro bind 9.2.1 depois de tudo atualizado e testado... /usr/local/sbin/named -v BIND 9.2.1 as 4h da manha do outro dia.... mesma coisa grafico la em cima e bind down! unica coisa que mudou foi os logs: Nov 25 03:50:31 exu named[66429]: timer.c:603: unexpected error: Nov 25 03:50:31 exu named[66429]: couldn't allocate event Nov 25 03:50:31 exu named[66429]: timer.c:603: unexpected error: Nov 25 03:50:31 exu named[66429]: couldn't allocate event Nov 25 03:50:31 exu named[66429]: timer.c:603: unexpected error: Nov 25 03:50:31 exu named[66429]: couldn't allocate event Nov 25 03:50:32 exu named[66429]: resolver.c:2241: unexpected error: Nov 25 03:50:32 exu named[66429]: isc_timer_create: out of memory Nov 25 03:50:32 exu named[66429]: resolver.c:2241: unexpected error: Nov 25 03:50:32 exu named[66429]: isc_timer_create: out of memory Nov 25 03:50:32 exu named[66429]: resolver.c:2241: unexpected error: Nov 25 03:50:32 exu named[66429]: isc_timer_create: out of memory Nov 25 03:50:32 exu named[66429]: resolver.c:2241: unexpected error: Nov 25 03:50:32 exu named[66429]: isc_timer_create: out of memory Nov 25 03:50:32 exu named[66429]: resolver.c:2241: unexpected error: Nov 25 03:50:32 exu named[66429]: isc_timer_create: out of memory Nov 25 03:50:32 exu named[66429]: resolver.c:2241: unexpected error: Nov 25 03:50:32 exu named[66429]: isc_timer_create: out of memory Nov 25 03:50:32 exu named[66429]: resolver.c:2241: unexpected error: Nov 25 03:50:32 exu named[66429]: isc_timer_create: out of memory Nov 25 03:50:32 exu named[66429]: resolver.c:2241: unexpected error: Nov 25 03:50:32 exu named[66429]: isc_timer_create: out of memory Nov 25 03:50:32 exu named[66429]: resolver.c:2241: unexpected error: Nov 25 03:50:32 exu named[66429]: isc_timer_create: out of memory e ele nao caiu ficou la com a porta aberta, mas parou de responder aos pedidos. Gostaria de saber se mais alguem teve esse problema.... E se ja acharam alguma solucao... OBS: Alguem tem algum script pra migrar de bind pra djbdns?
msg02947/pgp00000.pgp
Description: PGP signature
