Package: nslint Version: 3.0a2-1.1 Severity: important User: [email protected] Usertags: debian-edu
A fairly common way to provide the Kerberos domain using DNS discovery is to store it in the _kerberos TXT entry in DNS. But nslint claim such entry is illegal. When we have a zone with this entry: _kerberos TXT "INTERN" nslint complain like this: nslint: illegal hostname "_kerberos.intern." (starts with non-alpha/numeric) Bind accept it just fine, and the MIT kerberos library expect such to exist when doing autodiscovery. See for example <URL: http://wiki.unixh4cks.com/index.php/Using_DNS_SRV_records_to_find_Kerberos_realm_servers >. Can nslint be changed to accept it, and not emit an error for such entry? If I understand <URL: http://www.ietf.org/mail-archive/web/dnsop/current/msg01451.html > correctly, the TXT entries are not limited to the hostname restrictions, and thus should accept also names with understroke in them. Setting severity to important, as for nslint to be reliable it need to only warn about issues that really is a bug in the zone. -- Happy hacking Petter Reinholdtsen -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
