Project

General

Profile

Actions

Bug #11563

open

BIND GUI writes TXT records > 255 characters

Added by Bill McGonigle about 3 years ago. Updated 11 months ago.

Status:
New
Priority:
High
Assignee:
-
Category:
BIND
Target version:
-
Start date:
02/27/2021
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Affected Version:
2.4.5-p1
Affected Plus Version:
Affected Architecture:

Description

System: Netgate SG-3100, 2.4.5_1 (I checked the git log for pfSense-pkg-bind and didn't see a more recent fix.)

The BIND GUI will write TXT records > 255 characters, causing an invalid zone and loss of DNS service.

To be valid BIND 9 syntax the long TXT record needs to be broken up into:

( "LESS THAN 255" 
  "LESS THAN 255" 
  "REMAINDER STILL LESS THAN 255" )

This occurs easily (always?) with DKIM keys.

For ease-of-use, the GUI should probably re-combine the record for easy editing in the GUI upon load and make the BIND syntax transparent to the user.

Actions

Also available in: Atom PDF