ubuntuusers.de

Nach Bind Update kein Restart möglich

Status: Gelöst | Ubuntu-Version: Server 20.04 (Focal Fossa)
Antworten |

Lichtmacher

Anmeldungsdatum:
26. Januar 2009

Beiträge: 248

Hallo Zusammen,

heute morgen lief ein automatisches Update auf meinem Server. Dabei wurde mein bind9 aktualisiert:

1
2
zgrep 'install ' /var/log/dpkg.log* | sort | grep bind
/var/log/dpkg.log:2024-07-24 08:48:03 install bind9:amd64 1:9.18.28-0ubuntu0.20.04.1 1:9.16.1-0ubuntu2

Aus dem syslog:

1
2
Jul 24 06:39:18 neti systemd[1]: Starting Daily apt upgrade and clean activities...
Jul 24 06:39:26 neti systemd[1]: Reloading.

Danach startete der Nameserver nicht mehr (syslog)

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
Jul 24 06:39:34 neti systemd[1]: Stopping BIND Domain Name Server...
Jul 24 06:39:34 neti named[614]: received control channel command 'stop'
Jul 24 06:39:34 neti named[614]: no longer listening on 127.0.0.1#53
Jul 24 06:39:34 neti named[614]: no longer listening on 192.168.178.3#53
Jul 24 06:39:34 neti named[614]: no longer listening on ::1#53
Jul 24 06:39:34 neti named[614]: no longer listening on fe80::a00:27ff:fe63:124%2#53
Jul 24 06:39:34 neti named[614]: shutting down: flushing changes
Jul 24 06:39:34 neti named[614]: stopping command channel on 127.0.0.1#953
Jul 24 06:39:34 neti named[614]: stopping command channel on ::1#953
Jul 24 06:39:35 neti named[614]: exiting
Jul 24 06:39:35 neti systemd[1]: named.service: Succeeded.
Jul 24 06:39:35 neti systemd[1]: Stopped BIND Domain Name Server.
Jul 24 06:39:35 neti systemd[1]: Started BIND Domain Name Server.
Jul 24 06:39:35 neti named[3879]: starting BIND 9.18.28-0ubuntu0.20.04.1-Ubuntu (Extended Support Version) <id:>
Jul 24 06:39:35 neti named[3879]: running on Linux x86_64 5.4.0-189-generic #209-Ubuntu SMP Fri Jun 7 14:05:13 UTC 2024
Jul 24 06:39:35 neti named[3879]: built with  '--build=x86_64-linux-gnu' '--prefix=/usr' '--includedir=${prefix}/include' '--mandir=${prefix}/share/man' '--infodir=${prefix}/share/info' '--sysconfdir=/etc' '--localstatedir=/var' '--disable-silent-rules' '--libdir=${prefix}/lib/x86_64-linux-gnu' '--runstatedir=/run' '--disable-maintainer-mode' '--disable-dependency-tracking' '--libdir=/usr/lib/x86_64-linux-gnu' '--sysconfdir=/etc/bind' '--with-python=python3' '--localstatedir=/' '--enable-threads' '--enable-largefile' '--with-libtool' '--enable-shared' '--disable-static' '--with-gost=no' '--with-openssl=/usr' '--with-gssapi=yes' '--with-libidn2' '--with-json-c' '--with-lmdb=/usr' '--with-gnu-ld' '--with-maxminddb' '--with-atf=no' '--enable-ipv6' '--enable-rrl' '--enable-filter-aaaa' '--disable-native-pkcs11' 'build_alias=x86_64-linux-gnu' 'CFLAGS=-g -O2 -fdebug-prefix-map=/build/bind9-DcrdVp/bind9-9.18.28=. -fstack-protector-strong -Wformat -Werror=format-security -fno-strict-aliasing -fno-delete-null-pointer-checks -DNO_VERSION_DATE -DDIG_SIGCHASE' 'LDFLAGS=-Wl,-Bsymbolic-functions -Wl,-z,relro -Wl,-z,now' 'CPPFLAGS=-Wdate-time -D_FORTIFY_SOURCE=2'
Jul 24 06:39:35 neti named[3879]: running as: named -f -u bind
Jul 24 06:39:35 neti systemd[1]: named.service: Main process exited, code=exited, status=1/FAILURE
Jul 24 06:39:35 neti named[3879]: compiled by GCC 9.4.0
Jul 24 06:39:35 neti systemd[1]: named.service: Failed with result 'exit-code'.
Jul 24 06:39:35 neti named[3879]: compiled with OpenSSL version: OpenSSL 1.1.1f  31 Mar 2020
Jul 24 06:39:35 neti named[3879]: linked to OpenSSL version: OpenSSL 1.1.1f  31 Mar 2020
Jul 24 06:39:35 neti named[3879]: compiled with libuv version: 1.34.2
Jul 24 06:39:35 neti named[3879]: linked to libuv version: 1.34.2
Jul 24 06:39:35 neti named[3879]: compiled with libxml2 version: 2.9.10
Jul 24 06:39:35 neti named[3879]: linked to libxml2 version: 20910
Jul 24 06:39:35 neti named[3879]: compiled with json-c version: 0.13.1
Jul 24 06:39:35 neti named[3879]: linked to json-c version: 0.13.1
Jul 24 06:39:35 neti named[3879]: compiled with zlib version: 1.2.11
Jul 24 06:39:35 neti named[3879]: linked to zlib version: 1.2.11
Jul 24 06:39:35 neti named[3879]: ----------------------------------------------------
Jul 24 06:39:35 neti named[3879]: BIND 9 is maintained by Internet Systems Consortium,
Jul 24 06:39:35 neti named[3879]: Inc. (ISC), a non-profit 501(c)(3) public-benefit 
Jul 24 06:39:35 neti named[3879]: corporation.  Support and training for BIND 9 are 
Jul 24 06:39:35 neti named[3879]: available at https://www.isc.org/support
Jul 24 06:39:35 neti named[3879]: ----------------------------------------------------
Jul 24 06:39:35 neti named[3879]: adjusted limit on open files from 524288 to 1048576
Jul 24 06:39:35 neti named[3879]: found 1 CPU, using 1 worker thread
Jul 24 06:39:35 neti named[3879]: using 1 UDP listener per interface
Jul 24 06:39:35 neti named[3879]: DNSSEC algorithms: RSASHA1 NSEC3RSASHA1 RSASHA256 RSASHA512 ECDSAP256SHA256 ECDSAP384SHA384 ED25519 ED448
Jul 24 06:39:35 neti named[3879]: DS algorithms: SHA-1 SHA-256 SHA-384
Jul 24 06:39:35 neti named[3879]: HMAC algorithms: HMAC-MD5 HMAC-SHA1 HMAC-SHA224 HMAC-SHA256 HMAC-SHA384 HMAC-SHA512
Jul 24 06:39:35 neti named[3879]: TKEY mode 2 support (Diffie-Hellman): yes
Jul 24 06:39:35 neti named[3879]: TKEY mode 3 support (GSS-API): yes
Jul 24 06:39:35 neti named[3879]: loading configuration from '/etc/bind/named.conf'
Jul 24 06:39:35 neti named[3879]: /etc/bind/named.conf.options:19: option 'dnssec-enable' no longer exists
Jul 24 06:39:35 neti named[3879]: loading configuration: failure
Jul 24 06:39:35 neti named[3879]: exiting (due to fatal error)
Jul 24 06:39:35 neti systemd[1]: named.service: Scheduled restart job, restart counter is at 1.
Jul 24 06:39:35 neti systemd[1]: Stopped BIND Domain Name Server.
Jul 24 06:39:35 neti systemd[1]: Started BIND Domain Name Server.

exiting (due to fatal error)

Das geschieht dann wiederholt.

Weiß jemand etwas darüber, was da das Problem ist?

Ich habe mich jetzt erstmal damit beholfen, auf die alte Version zurückzugehen:

1
2
3
4
5
6
sudo apt-get install bind9-utils=1:9.16.1-0ubuntu2
sudo apt-get install bind9-libs=1:9.16.1-0ubuntu2
sudo apt-get install bind9=1:9.16.1-0ubuntu2
sudo systemctl restart named.service 
sudo systemctl status named.service 
sudo apt-mark hold bind9=1:9.16.1-0ubuntu2

DJKUhpisse Team-Icon

Supporter, Wikiteam
Avatar von DJKUhpisse

Anmeldungsdatum:
18. Oktober 2016

Beiträge: 18121

Wohnort: in deinem Browser, hier auf dem Bildschirm

Jul 24 06:39:35 neti named[3879]: /etc/bind/named.conf.options:19: option 'dnssec-enable' no longer exists

Du öffnest nun diese Datei und schaust in die Zeile 19. Da gibt es das Problem. Die Option dnssec-enable wurde vor einiger Zeit entfernt und muss nun aus deiner Konfigurationsdatei auch entfernt werden.

Lichtmacher

(Themenstarter)

Anmeldungsdatum:
26. Januar 2009

Beiträge: 248

Vielen Dank.

Es steht ja da.

Antworten |