Using bind 9.5.0 with Active directory
Danny Mayer
mayer at ntp.isc.org
Sun Jan 11 01:19:10 UTC 2009
Nico De Ranter wrote:
> Found some time to work on it again and it seams I did something wrong
> last time as ms-subdomain now works!
>
> Thanks for your help!!
>
> I did notice one strange thing when turning on trace mode of named:
>
> Whenever an update request occurs I see a lot of messages like:
>
> ---------------------------------------
> 09-Jan-2009 17:00:56.495 tsig key
> '1056-ms-7.1-16d2c.a501f663-de66-11dd-2196-000c292d3ce0' (XP5\
> $\@TEST.NET): tsig expire: generated=1, refs=1, expire=-86377)
> ---------------------------------------
>
> in named.run. The number of messages seems to increase with every
> request. After 2 weeks I get hundreds of these messages per update
> request. Is this normal? What will happen after named has been running
> for a few months? This looks like a potential DOS attack. (I'm running
> 9.5.0-P2)
>
> Nico
File a bug report to bind9-bugs at isc.org so that it can be tracked. It
might really be a bug.
Danny
More information about the bind-users
mailing list