bind-9.8.1: INSIST(! dns_rdataset _isassociated(sigrdataset)) failed

Lightner, Jeff JLightner at
Wed Nov 16 17:02:50 UTC 2011

By "init script" do you mean a script running from inittab doing a respawn?  When I see "init script" I think of scripts run at shutdown and boot in /etc/init.d (or more accurately in /etc/rc?.d run level directories linked to the scripts in init.d).

-----Original Message-----
From: at [ at] On Behalf Of Paul Wouters
Sent: Wednesday, November 16, 2011 11:48 AM
To: David Ford
Cc: bind-users at
Subject: Re: bind-9.8.1: INSIST(! dns_rdataset _isassociated(sigrdataset)) failed

On Wed, 16 Nov 2011, David Ford wrote:

> can we have a paradigm shift from ISC please?  instead of falling over
> dead with insist/assert, please bleat a warning and drop the problematic
> issue on the floor instead and press on with business.  many BIND DoS
> attacks (and zone typos) are very effective for just this reason.

These however do guarantee internal state so any kind of new bug is much easier
to find and fix. Openswan does the same thing for this very reason. However,
openswan does have an init script that runs a while(1) loop over its daemon.
This means once we encounter unexpected state, we drop all state and restart.

Perhaps bind and/or distributions should also use such an init script. I would prefer
that over attempting to continue with a bad internal state and seeing apparent
random state/crashers later on in bind because it tried to continue after something

Please visit to unsubscribe from this list

bind-users mailing list
bind-users at

Athena(r), Created for the Cause(tm)
Making a Difference in the Fight Against Breast Cancer

CONFIDENTIALITY NOTICE: This e-mail may contain privileged or confidential information and is for the sole use of the intended recipient(s). If you are not the intended recipient, any disclosure, copying, distribution, or use of the contents of this information is prohibited and may be unlawful. If you have received this electronic transmission in error, please reply immediately to the sender that you have received the message in error, and delete it. Thank you.

More information about the bind-users mailing list