.
BIND9 has a MAXLEN for the SN of the SOA? WTF? - Grin with cat attached
Previous Entry Next Entry
Sep. 30th, 2002 04:29 pm
BIND9 has a MAXLEN for the SN of the SOA?

WTF?

From: nisaba
Date: September 30th, 2002 - 08:43 am (Link)
Hrm...
Bind9 = dns?
MAXLEN = maximum length?
SN = serial number?
SOA = ok, this one has stumped me.

Wonder if I should do any of my own work today?
From: nisaba
Date: September 30th, 2002 - 11:55 am (Link)
*crawls into a dark corner, repeatedly bops herself and blames it all on her allergy to Mondays*

For some reason, I went into dealing-with-user helpdesk mode. Given I haven't worked on a helpdesk in two years, that's kinda scary.

and I've remembered SOA *bops herself some more*, for some reason all I could think of today was 'son of a bitch', which says a lot of NotGood[tm] things about my work enviroment
From: wechsler
Date: September 30th, 2002 - 01:06 pm (Link)
*manyhugs*
Users bad. Helpdesk *very* bad.

And as for allergies to mondays, I've been off sick all day... and spent it working on DNS and MTAs.

Sad geek, me?
From: ciphergoth
Date: September 30th, 2002 - 10:49 am (Link)
*confused*

The SN has to fit into a 32-bit unsigned int, doesn't it? That's always been the case. Or do you mean something else?
From: wechsler
Date: September 30th, 2002 - 11:36 am (Link)
Well, the server at works lets me use a serial number of:
200209251135
YYYYMMDDHHMM

The one at home doesn't appear to work with a number that long; chopping it to:
2002093015

seems to be enough to make it work.

No, I can't see why either.
From: ciphergoth
Date: September 30th, 2002 - 12:41 pm (Link)
Eek! The work server is Wrong, and is probably silently truncating the value you're giving it to 32 bits.

The usual trick is to use

YYYYMMDDSS

where SS is a daily counter that goes up to 99. This trick will stop working in the year 4294 but it should be OK for now.
From: wechsler
Date: September 30th, 2002 - 01:02 pm (Link)
Yeah, but the work one was silently working, and the local one was just silently deeming the entire affected zone corrupt.
Annoying, that :/
From: ciphergoth
Date: September 30th, 2002 - 02:43 pm (Link)
Yeah, you have to look in syslog every time you restart BIND since that's the only place it complains about the changes you've made, which is a pain.
From: giolla
Date: October 1st, 2002 - 03:27 pm (Link)
It probably wasn't working nearly as well as you thought.
That limit has been around since BIND 4, though in 8 and earlier it doesn't stop working it just does odd stuff and bites you hard when you next want to update your DNS.