Subject: bin/17913: named 8.3.3-REL-NOESW gets polluted root cache
To: None <gnats-bugs@gnats.netbsd.org>
From: None <jtk@kolvir.arlington.ma.us>
List: netbsd-bugs
Date: 08/11/2002 19:24:32
>Number:         17913
>Category:       bin
>Synopsis:       named 8.3.3-REL-NOESW gets polluted root cache
>Confidential:   no
>Severity:       serious
>Priority:       high
>Responsible:    bin-bug-people
>State:          open
>Class:          sw-bug
>Submitter-Id:   net
>Arrival-Date:   Sun Aug 11 16:25:00 PDT 2002
>Closed-Date:
>Last-Modified:
>Originator:     John Kohl
>Release:        NetBSD 1.6_BETA5
>Organization:
NetBSD Kernel Hackers `R` Us
>Environment:
	
	
System: NetBSD kolvir.arlington.ma.us 1.6_BETA5 NetBSD 1.6_BETA5 (KOLVIR-$Revision: 1.47 $) #2: Sat Aug 10 09:36:48 EDT 2002 jtk@kolvir.arlington.ma.us:/usr/u4/sandbox/src/sys/arch/i386/compile/KOLVIR i386
Architecture: i386
Machine: i386
>Description:
I run a caching named for most zones, with forwarding via my ISP's name
servers:

forwarders {
204.127.202.19 ;
216.148.227.79 ;
};

Running 'dig carols.net a' returns a bogus record from my ISP's
name servers stating that
the root name server's server is a host name "ns"
(clearly a config error on the part of the carols.net server admins).

However, this return packet pollutes the cache of my BIND server.
I see the same behaviour with 1.5.3's bind and the pkgsrc BIND (which
is named 8.3.3-REL).

>How-To-Repeat:
	config named with a forwarders clause.
	dig carols.net ns
	dig . ns
>Fix:
	
>Release-Note:
>Audit-Trail:
>Unformatted: