BIND can fail easily due to a simple error when creating a new zone

Discussion in 'Installation/Configuration' started by ronee, Oct 30, 2012.

  1. ronee

    ronee HowtoForge Supporter

    Hello,

    This has been discussed previously but I am starting a new thread due to the fact that in my opinion the important point of this has not been mentioned.

    I have reproduced this on latest stable ispconfig3 (at time of this writing) on Centos 6.3. The issue is simple. A user (which using ispconfig3 can easily access/manage) simply by creating a new zone and not correctly defining the necessary NS or A records can easily take down BIND for all zones on that server.

    I would say that ispconfig should either not save a faulty zone file (easily accomplished by trapping errors via named-checkconf for instance) or at the very least, the wizard should force the use to enter the minimum info.

    Otherwise those of us that delegate dns management access to users (which is the norm these days) can risk bind failure across the entire server due to the simple mistake of any single user.

    Thanks,

    Ron
     
  2. till

    till Super Moderator

    This has already been implemented in ispconfig 3.0.5.
     
  3. ronee

    ronee HowtoForge Supporter

    Good to know, thanks very much Till.
     

Share This Page