Package: bind9
Version: 1:9.8.4.dfsg.P1-6+nmu2+deb7u2
Severity: normal
* What led up to the situation?
The error shows during the service stop (either launched by hand or when the
system shuts down)
server:~# /etc/init.d/bind9 stop
[....] Stopping domain name service...: bind9rndc: connect failed:
127.0.0.1#953: connection refused
waiting for pid 2584 to die
.. ok
server:~#
It happened also in previous debian releases (I remember for sure etch and
squeeze, not sure about lenny).
* What exactly did you do (or not do) that was effective (or
ineffective)?
The only workaround I found is
"chown root.bind /etc/bind/rdnc.key" (by itself, it's bind.bind).
The permissions were 640, and I didn't change them.
-- System Information:
Debian Release: 7.6
APT prefers stable
APT policy: (500, 'stable')
Architecture: i386 (i686)
Kernel: Linux 3.13.6
Locale: LANG=it_IT.UTF-8, LC_CTYPE=it_IT.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Versions of packages bind9 depends on:
ii adduser 3.113+nmu3
ii bind9utils 1:9.8.4.dfsg.P1-6+nmu2+deb7u2
ii debconf [debconf-2.0] 1.5.49
ii libbind9-80 1:9.8.4.dfsg.P1-6+nmu2+deb7u2
ii libc6 2.13-38+deb7u4
ii libcap2 1:2.22-1.2
ii libdns88 1:9.8.4.dfsg.P1-6+nmu2+deb7u2
ii libgssapi-krb5-2 1.10.1+dfsg-5+deb7u2
ii libisc84 1:9.8.4.dfsg.P1-6+nmu2+deb7u2
ii libisccc80 1:9.8.4.dfsg.P1-6+nmu2+deb7u2
ii libisccfg82 1:9.8.4.dfsg.P1-6+nmu2+deb7u2
ii liblwres80 1:9.8.4.dfsg.P1-6+nmu2+deb7u2
ii libssl1.0.0 1.0.1e-2+deb7u12
ii libxml2 2.8.0+dfsg1-7+wheezy1
ii lsb-base 4.1+Debian8+deb7u1
ii net-tools 1.60-24.2
ii netbase 5.0
bind9 recommends no packages.
Versions of packages bind9 suggests:
ii bind9-doc 1:9.8.4.dfsg.P1-6+nmu2+deb7u2
ii dnsutils 1:9.8.4.dfsg.P1-6+nmu2+deb7u2
pn resolvconf <none>
pn ufw <none>
-- Configuration Files:
/etc/bind/named.conf.local changed:
//
// Do any local configuration here
//
// Consider adding the 1918 zones here, if they are not used in your
// organization
//include "/etc/bind/zones.rfc1918";
// add entries for other zones below here
zone "0.0.127.in-addr.arpa" {
type master;
file "/etc/bind/db.0.0.127";
};
zone "vanni.it" {
type master;
notify no;
file "/etc/bind/db.vanni.it";
};
zone "1.168.192.in-addr.arpa" {
type master;
notify no;
file "/etc/bind/db.1.168.192";
};
/etc/bind/named.conf.options changed:
options {
directory "/var/cache/bind";
// If there is a firewall between you and nameservers you want
// to talk to, you may need to fix the firewall to allow multiple
// ports to talk. See http://www.kb.cert.org/vuls/id/800113
// If your ISP provided one or more IP addresses for stable
// nameservers, you probably want to use them as forwarders.
// Uncomment the following block, and insert the addresses replacing
// the all-0's placeholder.
// forwarders {
// 0.0.0.0;
// };
//========================================================================
// If BIND logs error messages about the root key being expired,
// you will need to update your keys. See https://www.isc.org/bind-keys
//========================================================================
dnssec-validation auto;
auth-nxdomain no; # conform to RFC1035
listen-on-v6 { any; };
};
-- debconf information:
bind9/different-configuration-file:
bind9/run-resolvconf: true
bind9/start-as-user: bind
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
