Package: bind9
Version: 1:9.16.27-1~deb11u1
Severity: normal
X-Debbugs-Cc: rossboy...@stanfordalumni.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
This issue is about missing documentation.
As far as I can tell, the existence and function of /etc/default/named is
undocumented in the man pages or /usr/share/doc except for a couple of comments
in the file.
The newish name for the file, previously bind9, and the lack of notice about it
has already been noted in Issue #993257. I didn't even see a changelog entry
about the name change, though other file renames to named are mentioned.
Additional issues:
1. Do the settings in the file apply only with init scripts, only with init.d,
or with some hybrid?
/lib/systemd/system/bind9.service explicitly references the file as setting
the environment. However, it only refers to $OPTIONS, not $RESOLVCONF.
Conceivably the latter could affect named itself, but I don't know systemd
enough to know if the setting is passed on, and the named man page makes no
reference to the variable.
2. What does setting OPTIONS do? One can always peek as I did, given
sufficient familiarity, but it shouldn't be that hard to tell.
3. What does RESOLVCONF do? This includes the question of whether it does
anything with systemd, and exactly what it does if it is set to yes.
4. Are there any other settings one might make in default/named that affect the
behavior of the package?
I was led to these problems by consulting /usr/share/doc/resolvconf/README.gz.
It says
* To make bind9 supply its nameserver address 127.0.0.1 to resolvconf,
set RESOLVCONF=yes in /etc/default/bind9.
and it then goes on to describe how to get bind9 to use nameservers resolvconf
has found. This is much more informative than the brief comment in the
default/named file, but the fact that it doesn't even have the right name for
the file does not inspire confidence. While resolvconf is not this package's
responsibility, this package provides the RESOLVCONF options in default/named,
and it should explain what it does.
I looked for text about bind9 or named's options in the debconf database but
found nothing.
- -- System Information:
Debian Release: 11.4
APT prefers stable-security
APT policy: (500, 'stable-security'), (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 5.10.0-16-amd64 (SMP w/8 CPU threads)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE,
TAINT_UNSIGNED_MODULE
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not
set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages bind9 depends on:
ii adduser 3.118
ii bind9-libs 1:9.16.27-1~deb11u1
ii bind9-utils 1:9.16.27-1~deb11u1
ii debconf [debconf-2.0] 1.5.77
ii dns-root-data 2021011101
ii init-system-helpers 1.60
ii iproute2 5.10.0-4
ii libc6 2.31-13+deb11u3
ii libcap2 1:2.44-1
ii libfstrm0 0.6.0-1+b1
ii libjson-c5 0.15-2
ii liblmdb0 0.9.24-1
ii libmaxminddb0 1.5.2-1
ii libprotobuf-c1 1.3.3-1+b2
ii libssl1.1 1.1.1n-0+deb11u3
ii libuv1 1.40.0-2
ii libxml2 2.9.10+dfsg-6.7+deb11u2
ii lsb-base 11.1.0
ii netbase 6.3
ii zlib1g 1:1.2.11.dfsg-2+deb11u1
bind9 recommends no packages.
Versions of packages bind9 suggests:
pn bind-doc <none>
ii bind9-dnsutils [dnsutils] 1:9.16.27-1~deb11u1
ii dnsutils 1:9.16.27-1~deb11u1
ii resolvconf 1.87
pn ufw <none>
-----BEGIN PGP SIGNATURE-----
iQFSBAEBCgA8FiEEreS674/HIyV9gBfdnAYPmOsbK2AFAmLzXr8eHHJvc3Nib3ls
YW5Ac3RhbmZvcmRhbHVtbmkub3JnAAoJEJwGD5jrGytglW4H/0jFH2M4jPSaZVSg
fOOOzqM+9+S/9uGV1fE7EtB2U+26TDLPKPmrxuj86PmrrVczZJKuI24rHh35C0dP
KZfvXgqbVIBNkz1gYB5bn91KpjYCYm+Ws1FfEoYgKSu4LjiqkP+Z73NuKBv/y6dN
mwee8PlggRVQjW/z0i20Shj0fAvknho8JdZcfcD/s78+HGLkhQd7iGKsmZIJB5cG
euKvAwSqciLbYfXu2VO5ra+b5TIaOvyyIorTUQO4W8zfucSH1vW0AlC/yl0Xg47t
lYFdoAHwznia/DDvhSRSy9L3pDrwadONvHiockUB5/L41W4RXNBtFe0ykv7gsLzZ
ui1j30s=
=D90b
-----END PGP SIGNATURE-----
