[tor-relays] bind DNS Crash on Exit
teor
teor2345 at gmail.com
Wed Apr 26 06:19:25 UTC 2017
Hi all,
Are you using bind as a local caching resolver on your exits?
The DNS resolver on our exit crashed over the weekend due to this bug:
https://kb.isc.org/article/AA-01466
It hasn't been patched yet in Debian:
https://security-tracker.debian.org/tracker/CVE-2017-3137
So I have added a file:
/etc/systemd/system/bind9.service.d/restart-on-abort.conf
With the text:
[Service]
Restart=on-abort
This should work for any systemd/bind9 Linux system.
T
--
Tim Wilson-Brown (teor)
teor2345 at gmail dot com
PGP C855 6CED 5D90 A0C5 29F6 4D43 450C BA7F 968F 094B
ricochet:ekmygaiu4rzgsk6n
xmpp: teor at torproject dot org
------------------------------------------------------------------------
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: Message signed with OpenPGP
URL: <http://lists.torproject.org/pipermail/tor-relays/attachments/20170426/29251093/attachment.sig>
More information about the tor-relays
mailing list