AAAAAAAAARRRRGGHHHHH! bind fuckups

To: Debian developers list <debian-devel@lists.debian.org>, 5726@bugs.debian.org
Subject: AAAAAAAAARRRRGGHHHHH! bind fuckups
From: ijackson@chiark.greenend.org.uk (Ian Jackson)
Date: Tue, 4 Aug 1998 13:25:22 +0100 (BST)
Message-id: <[🔎] 13766.64946.105340.967065@chiark.greenend.org.uk>
In Bug#5726 I reported what the bind upgrade did to the configuration
on my home system.

On chiark, a production machine with about 100 users and the primary
for several DNS zones, it made even more of a mess.

It _deleted all the externally-visible `primary' entries_ from my
named.boot, and then converted the result to a named.conf, and
offered to restart named !

This kind of thing is _much_ worse than having no postinst at all.
I suggest that until the situation is fixed by having bindconfig
completely rewritten, it and the bind postinst be removed.

Details are below: copies of named.boot.working, which was a backup
copy I made before the upgrade because I suspected something like this
might happen, and named.boot and named.conf after the upgrade, plus a
transcript of that part of the dpkg run.

Thanks,
Ian.

chiark:~> cat /etc/named.boot.working 
directory /var/named
cache . root.cache
;
; Official primary zones
primary culture.dotat.at                        db.culture
primary maranello.org                           db.maranello
primary ucam-student-run.culture.dotat.at       srdns/db.student-run
primary ucam.org                                srdns/db.student-run
primary hemmel.com                              db.hemmel
;
; Official secondary zones
secondary dotat.at              212.240.134.130                 db.dotatat
;
; Unofficial secondary zones
secondary bi.org                194.70.44.95                    db.biorg
secondary chaos.org.uk          194.70.44.95                    db.chaos
secondary greenend.org.uk       193.122.233.17 193.122.233.1    db.greenend
secondary debian.org            205.230.163.100 195.64.68.28    db.debian
;
secondary 76.224.195.in-addr.arpa 193.122.233.17 193.122.233.1          rev.lattis
;
secondary cam.ac.uk             131.111.8.42 131.111.12.20      db.cam
secondary 111.131.in-addr.arpa  131.111.8.42 131.111.12.20      rev.cam
;
secondary cl.cam.ac.uk          128.232.0.11 128.232.0.10       db.cl
secondary 232.128.in-addr.arpa  128.232.0.11 128.232.0.10       rev.cl
;
secondary eng.cam.ac.uk         129.169.8.9 129.169.8.8         db.eng
secondary 169.129.in-addr.arpa  129.169.8.9 129.169.8.8         rev.eng
;
secondary ac.uk                 128.86.1.20 128.16.5.32 128.86.8.25 db.ac
;
secondary cam-orl.co.uk         158.124.64.65 158.124.64.2      db.cam-orl
secondary 124.158.in-addr.arpa  158.124.64.65 158.124.64.2      rev.cam-orl-158
secondary 239.5.192.in-addr.arpa 158.124.64.65 158.124.64.2     rev.cam-orl
;
; Unofficial primary zones (just copies of official ones, now)
primary local                   db.culture
primary student-run.ucam.local  srdns/db.student-run
;
; The various stub primaries
primary 0.0.127.in-addr.arpa    rev.local
primary 0.in-addr.arpa          db.null
primary 255.in-addr.arpa        db.null
chiark:~> cat /etc/named.boot
directory /var/named
cache . root.cache
;
; Official secondary zones
secondary debian.org            206.139.73.12                   db.debian
;
; Unofficial secondary zones
secondary cam.ac.uk             131.111.8.42 131.111.12.20      db.cam
secondary 111.131.in-addr.arpa  131.111.8.42 131.111.12.20      rev.cam
;
secondary cl.cam.ac.uk          128.232.0.11 128.232.0.10       db.cl
secondary 232.128.in-addr.arpa  128.232.0.11 128.232.0.10       rev.cl
;
secondary eng.cam.ac.uk         129.169.8.9 129.169.8.8         db.eng
secondary 169.129.in-addr.arpa  129.169.8.9 129.169.8.8         rev.eng
;
secondary ac.uk                 128.86.1.20 128.16.5.32 128.86.8.25 db.ac
;
secondary cam-orl.co.uk         192.5.239.65 192.5.239.2        db.cam-orl
secondary 239.5.192.in-addr.arpa 192.5.239.65 192.5.239.2       rev.cam-orl
;
secondary ultratech.net         204.101.209.1 204.101.209.2     db.ultraspeak
;
; The local and student-run.ucam.local primary
primary local                   db.local
primary student-run.ucam.local  srdns/db.student-run
;
; The various stub primaries
primary 0.0.127.in-addr.arpa    named.local
primary 0.in-addr.arpa          db.null
primary 255.in-addr.arpa        db.null
chiark:~> cat /etc/named.conf
// generated by named-bootconf.pl

options {
	directory "/var/named";
	/*
	 * If there is a firewall between you and nameservers you want
	 * to talk to, you might need to uncomment the query-source
	 * directive below.  Previous versions of BIND always asked
	 * questions using port 53, but BIND 8.1 uses an unprivileged
	 * port by default.
	 */
	// query-source address * port 53;
};

zone "." {
	type hint;
	file "root.cache";
};

// 
// Official secondary zones
zone "debian.org" {
	type slave;
	file "db.debian";
	masters {
		206.139.73.12;
	};
};

// 
// Unofficial secondary zones
zone "cam.ac.uk" {
	type slave;
	file "db.cam";
	masters {
		131.111.8.42;
		131.111.12.20;
	};
};

zone "111.131.in-addr.arpa" {
	type slave;
	file "rev.cam";
	masters {
		131.111.8.42;
		131.111.12.20;
	};
};

// 
zone "cl.cam.ac.uk" {
	type slave;
	file "db.cl";
	masters {
		128.232.0.11;
		128.232.0.10;
	};
};

zone "232.128.in-addr.arpa" {
	type slave;
	file "rev.cl";
	masters {
		128.232.0.11;
		128.232.0.10;
	};
};

// 
zone "eng.cam.ac.uk" {
	type slave;
	file "db.eng";
	masters {
		129.169.8.9;
		129.169.8.8;
	};
};

zone "169.129.in-addr.arpa" {
	type slave;
	file "rev.eng";
	masters {
		129.169.8.9;
		129.169.8.8;
	};
};

// 
zone "ac.uk" {
	type slave;
	file "db.ac";
	masters {
		128.86.1.20;
		128.16.5.32;
		128.86.8.25;
	};
};

// 
zone "cam-orl.co.uk" {
	type slave;
	file "db.cam-orl";
	masters {
		192.5.239.65;
		192.5.239.2;
	};
};

zone "239.5.192.in-addr.arpa" {
	type slave;
	file "rev.cam-orl";
        masters {
                192.5.239.65;
                192.5.239.2;
        };
};
 
// 
zone "ultratech.net" {
        type slave;
        file "db.ultraspeak";
        masters {
                204.101.209.1;
                204.101.209.2;
        };
};
 
// 
// The local and student-run.ucam.local primary
zone "local" {
        type master;
        file "db.local";
};
 
zone "student-run.ucam.local" {
        type master;
        file "srdns/db.student-run";
};
 
// 
// The various stub primaries
zone "0.0.127.in-addr.arpa" {
        type master;
        file "named.local";
};
 
zone "0.in-addr.arpa" {
        type master;
        file "db.null";
};
 
zone "255.in-addr.arpa" {
        type master;
        file "db.null";
};
 
chiark:~> 

Setting up bind (8.1.2-2) ...
Installing new version of config file /etc/init.d/bind ...
Installing new version of config file /var/named/named.root ...

This version of the Debian bind package uses a special arrangement of files
in /var/named that makes it easy to modify your configuration using the
included `bindconfig' utility. Would you like your existing files to be
automatically converted to use the new arrangement? [Y] n

Okay, leaving your named.boot in place. You will not be able to use
`bindconfig' to adjust your configuration.
Rotated `/etc/named.conf' at Tue Aug  4 13:11:13 BST 1998.
Start nameserver daemon now? [Y] n
Not started; to start later, do: /etc/init.d/bind start
Press [ENTER]

Setting up ncftp (2.4.3-4) ...


--  
To UNSUBSCRIBE, email to debian-devel-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Reply to:
Prev by Date: Re: Login source code
Next by Date: Re: POSIX shell; bash ash pdksh & /bin/sh
Previous by thread: Processed: f
Next by thread: bash questions
Index(es):
- Date
- Thread