<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=Windows-1252">
<style type="text/css" style="display:none;"><!-- P {margin-top:0;margin-bottom:0;} --></style>
</head>
<body dir="ltr">
<div id="divtagdefaultwrapper" style="font-size:12pt;color:#000000;font-family:Calibri,Helvetica,sans-serif;" dir="ltr">
<p style="margin-top:0;margin-bottom:0">Thanks Mark.<br>
</p>
</div>
<hr style="display:inline-block;width:98%" tabindex="-1">
<div id="divRplyFwdMsg" dir="ltr"><font face="Calibri, sans-serif" style="font-size:11pt" color="#000000"><b>From:</b> bind-users <bind-users-bounces@lists.isc.org> on behalf of Mark Andrews <marka@isc.org><br>
<b>Sent:</b> Monday, March 5, 2018 11:51:06 AM<br>
<b>To:</b> Nagesh Thati<br>
<b>Cc:</b> bind-users@lists.isc.org<br>
<b>Subject:</b> Re: servfail-ttl 0; option in the named.conf global section is crashing the named (BIND 9.10.6)</font>
<div> </div>
</div>
<div class="BodyFragment"><font size="2"><span style="font-size:11pt;">
<div class="PlainText"><br>
> On 5 Mar 2018, at 4:50 pm, Nagesh Thati <tcpnagesh@gmail.com> wrote:<br>
> <br>
> Hello,<br>
> <br>
> I have added a servfail-ttl 0; parameter in the named.conf file in the global section and restarted the named, but named is not coming up and I don't see any errors printing in the named.log. When I do a named-checkconf on named.conf it is giving error as
UNKNOWN OPTION servfail-ttl. The version I am using is BIND 9.10.6 stable build. Can some one help me on this.
<br>
> Thanks.<br>
> <br>
> To fix this bug I have added above parameter CVE-2018-5734: A malformed request can trigger an assertion failure in badcache.c<br>
<br>
CVE-2018-5734 does not apply to BIND 9.10.6 (which doesn’t have a servfail-ttl option).<br>
<br>
CVE-2018-5734 applies to BIND 9.10.5-S1 to 9.10.5-S4, BIND 9.10.6-S1, 9.10.6-S2 (these versions have servfail-ttl as a option).<br>
<br>
"named -v” will report which version of named you are running.<br>
<br>
e.g<br>
% named -v<br>
BIND 9.10.6 <id:9d1ea0b7fe><br>
% <br>
<br>
Parsing errors messages will be logged in the system log as named has not yet got far enough into the startup process to know to log the messages elsewhere.<br>
<br>
Mark<br>
<br>
> _______________________________________________<br>
> Please visit <a href="https://lists.isc.org/mailman/listinfo/bind-users">https://lists.isc.org/mailman/listinfo/bind-users</a> to unsubscribe from this list<br>
> <br>
> bind-users mailing list<br>
> bind-users@lists.isc.org<br>
> <a href="https://lists.isc.org/mailman/listinfo/bind-users">https://lists.isc.org/mailman/listinfo/bind-users</a><br>
<br>
-- <br>
Mark Andrews, ISC<br>
1 Seymour St., Dundas Valley, NSW 2117, Australia<br>
PHONE: +61 2 9871 4742 INTERNET: marka@isc.org<br>
<br>
_______________________________________________<br>
Please visit <a href="https://lists.isc.org/mailman/listinfo/bind-users">https://lists.isc.org/mailman/listinfo/bind-users</a> to unsubscribe from this list<br>
<br>
bind-users mailing list<br>
bind-users@lists.isc.org<br>
<a href="https://lists.isc.org/mailman/listinfo/bind-users">https://lists.isc.org/mailman/listinfo/bind-users</a><br>
</div>
</span></font></div>
</body>
</html>