misc/102913: /etc/rc.d/named killall in jailed OS

Laurent LEVIER llevier at argosnet.com
Tue Sep 5 18:10:17 UTC 2006

>Number:         102913
>Category:       misc
>Synopsis:       /etc/rc.d/named killall in jailed OS
>Confidential:   no
>Severity:       non-critical
>Priority:       medium
>Responsible:    freebsd-bugs
>State:          open
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Tue Sep 05 18:10:15 GMT 2006
>Originator:     Laurent LEVIER
>Release:        6.1p3
/etc/rc.d/named script tries to kill named with rndc.
Upon failure, it kills the named with the 'killall' procedure.

Unfortunately, when OS runs jails, this killall also kills all Jails named.

Should be corrected to avoid this ;-)

Build a jail
Setup DNS into jails
/etc/rc.d/named stop

Instead of killall, take from /etc/rc.conf named args to build the named process line, and use ps to detect this line and then send either -15 or -9.

More information about the freebsd-bugs mailing list