diff --git a/bind.spec b/bind.spec index 8da0298..6116cdd 100644 --- a/bind.spec +++ b/bind.spec @@ -20,7 +20,7 @@ Summary: The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) serv Name: bind License: ISC Version: 9.6.1 -Release: 9.%{PATCHVER}%{?dist} +Release: 10.%{PATCHVER}%{?dist} Epoch: 32 Url: http://www.isc.org/products/BIND/ Buildroot:%{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n) @@ -589,6 +589,9 @@ rm -rf ${RPM_BUILD_ROOT} %ghost %{chroot_prefix}/etc/localtime %changelog +* Wed Jan 27 2010 Adam Tkac 32:9.6.1-10.P3 +- revert the "DEBUG" feature (#510283), it causes too many problems (#545128) + * Tue Jan 19 2010 Adam Tkac 32:9.6.1-9.P3 - update to 9.6.1-P3 (CVE-2010-0097) diff --git a/named.init b/named.init index 12540a2..5694427 100755 --- a/named.init +++ b/named.init @@ -47,21 +47,6 @@ fi [ /etc/sysconfig/dnssec -nt /etc/named.conf ] && \ /usr/sbin/dnssec-configure -b --norestart --dnssec="$DNSSEC" --dlv="$DLV" -# Enable/disable debugging -if [ "x$DEBUG" = 'xyes' ]; then - chown named.named /var/named - if [ -x /usr/sbin/selinuxenabled ] && /usr/sbin/selinuxenabled && - [ `getsebool named_write_master_zones | awk '{ print $3; }'` = 'off' ]; then - setsebool named_write_master_zones 1 - fi; -else - chown root.named /var/named - if [ -x /usr/sbin/selinuxenabled ] && /usr/sbin/selinuxenabled && - [ `getsebool named_write_master_zones | awk '{ print $3; }'` = 'on' ]; then - setsebool named_write_master_zones 0 - fi; -fi - ROOTDIR_MOUNT='/etc/named /etc/pki/dnssec-keys /var/named /etc/named.conf /etc/named.dnssec.keys /etc/named.rfc1912.zones /etc/rndc.conf /etc/rndc.key /usr/lib64/bind /usr/lib/bind' diff --git a/named.sysconfig b/named.sysconfig index da4c724..53b6a1b 100644 --- a/named.sysconfig +++ b/named.sysconfig @@ -31,8 +31,3 @@ # at startup. Don't add -t here, use ROOTDIR instead. # # KEYTAB_FILE="/dir/file" -- Specify named service keytab file (for GSS-TSIG) -# -# DEBUG="yes|no" -- This option controls if you would like to debug -# named process. If you set this option to "yes" then -# /var/named/ directory become writable by named user -# and named will be able to write core dumps there.