,--[ On Thu, Dec 27, 2007 at 08:20:37PM +0100, Ralf Stephan wrote: | > While trying to prevent 'net-dns/pdnsd' to listen on TCP and on to | > avoid TCP queries, I changed 'tcp_server' parameter to 'off' and | > 'query_method' parameter to 'udp_only' in /etc/pdnsd/pdnsd.conf . But | > when I restarted pdnsd I found it is still listening on TCP. I checked | > /etc/conf.d/pdnsd and found no option related to listening to 'TCP' | > set. So, then I checked /etc/init.d/pdnsd and I found that 'pdnsd' has | > been launched with '-t' command line argument (enables the TCP server | > thread. pdnsd will then serve TCP and UDP queries.) . So to disable, I | > need to append '--notcp' to PDNSDCONFIG in /etc/conf.d/pdnsd. So I | > think, listening shouldn't be made by default, even if it is, then it | > should be in configuration file, not in init.d script . | | Since noone answered, I'll try. I'm not into the details of your | problem but I have the impression your suggestion should be stated | to the pdnsd developing community, not on gentoo. I'd qualify it as | bug, but YMMV, and again, I don't know much about it.
Let me elaborate it a bit: pdnsd is a DNS server capable of listening on TCP/UDP ports (depending on options in configuration file and commandline). Options set on commandline override what is set is configuration file. And, in init script of this port, the option to listen on TCP ports, i.e. '-t' switch, has been explicitly passed. So, there is no way, one can disable listening on TCP from pdnsd.conf. So one, has to edit '/etc/conf.d/pdnsd' and add --notcp option. In my view, from the point-of least privileges, one has to explicitly turn on listening of daemon on port. So its a problem on Gentoo porting side, not with the pdnsd team. Thanks. -- Ashish Shukla आशीष शुक्ल http://wahjava.wordpress.com/ ·-- ·- ···· ·--- ·- ···- ·- ·--·-· --· -- ·- ·· ·-·· ·-·-·- -·-· --- --
signature.asc
Description: Digital signature
