Re: BIND security question

To: Pollywog <pollywog@shadypond.com>
Cc: debian-user list <debian-user@lists.debian.org>, recipient list not shown: ;
Subject: Re: BIND security question
From: aphro <nate@firetrail.com>
Date: Thu, 30 Dec 1999 09:45:33 -0800 (PST)
Message-id: <[🔎] Pine.LNX.4.21.9912300941390.24409-100000@galactica.firetrail.com>
In-reply-to: <[🔎] XFMail.19991230151317.pollywog@shadypond.com>

its not hard to do, but you gotta make sure that permissiosn are right on
the files all the time..which can be a pain sometimes, if even 1 zone file
can't be read bind will puke.

on my servers i made a little script to do it for me..:

echo -n "Updating permissions for the BIND server ..."
chown named.named /var/named
chown named.named /usr/local/named
chown -R named.named /var/named/usr
chmod -R o-rwx /var/named/named* /var/named/primary/* /var/named/reverse/*
chmod -R u+rw  /var/named/named* /var/named/primary/* /var/named/reverse/*
chmod -R g+rw /var/named/named* /var/named/primary/* /var/named/reverse/*
chown -R named.named /var/named/named* /var/named/primary*
/var/named/reverse/*
echo "done"

i also have another script to restart bind :;

#!/bin/sh
BINDPROC=`cat /var/named/var/run/named.pid`
cd /var/named
./permissions
echo "BIND restarting by command of $USER on `date`"
echo "BIND on process $BINDPROC is being restarted by command of $LOGNAME
at `date`  This message is informational, no action is needed." | mail
someuser@myserver
echo "BIND on process $BINDPROC  is being restarted by command of $LOGNAME
at `date`" | mail mypager@myserver
kill -HUP $BINDPROC

these scripts are mainly for the other admin(s) who are not too unix savvy
just yet but they are getting there ..

nate

On Thu, 30 Dec 1999, Pollywog wrote:

pollyw >
pollyw >On 30-Dec-1999 Onno wrote:
pollyw >> At 04:16 PM 12/28/99 -0000, Pollywog wrote:
pollyw >>>
pollyw >>>On 28-Dec-1999 root wrote:
pollyw >>>
pollyw >>>Was this someone trying to find out which BIND I am running?
pollyw >>>> 
pollyw >>>> Unusual System Events
pollyw >>>> =-=-=-=-=-=-=-=-=-=-=
pollyw >>>> Dec 28 06:39:09 lilypad named[342]: unapproved query from
pollyw >>>> [206.79.22.9].1978
pollyw >>>> for "version.bind"
pollyw >>>> Dec 28 06:39:09 lilypad named[342]: unapproved query from
pollyw >>>> [206.79.22.9].1978
pollyw >>>> for "version.bind"
pollyw >> 
pollyw >> I don't know the query but I't looks like bind is handeling it quite well
pollyw >> ;-)
pollyw >> 
pollyw >> Anyway you have bind under another UID/GID than root, right?
pollyw >
pollyw >I installed the Debian package for BIND, and I just checked and it does appear
pollyw >to be running as root :( 
pollyw >
pollyw >I will have to read the docs to determine if I can change that without
pollyw >compiling it myself.
pollyw >
pollyw >--
pollyw >Andrew
pollyw >
pollyw >
pollyw >-- 
pollyw >Unsubscribe?  mail -s unsubscribe debian-user-request@lists.debian.org < /dev/null
pollyw >

----------------------------------------[mailto:aphro@aphroland.org ]--
   Vice President Network Operations       http://www.firetrail.com/
  Firetrail Internet Services Limited      http://www.aphroland.org/
       Everett, WA 425-348-7336            http://www.linuxpowered.net/
            Powered By:                    http://comedy.aphroland.org/
    Debian 2.1 Linux 2.0.36 SMP            http://yahoo.aphroland.org/
-----------------------------------------[mailto:aphro@netquest.net ]--
9:24am up 132 days, 21:18, 3 users, load average: 2.27, 1.75, 1.61

Reply to:

Follow-Ups:
- Re: BIND security question
  - From: Pollywog <pollywog@shadypond.com>

References:
- Re: BIND security question
  - From: Pollywog <pollywog@shadypond.com>

Prev by Date: Re: Multiple virtualusertables
Next by Date: Fwd: Problem Installing X
Previous by thread: Re: BIND security question
Next by thread: Re: BIND security question
Index(es):
- Date
- Thread