In message 20090730174054.h23...@gwyn.tux.org, Joseph S D Yao writes:
I assume someone can answer this; but Google has not been able to be my
friend on this one.
In dig(1), the '-k' option is said to require a TSIG key file as an
option. I have a TSIG file with a comment header and the
Completely off topic, but another solution to our (my?) woes would be people
refraining from using URL shortening/obfuscating services when posting URL's
to public mailing lists.
What's really ironic is the shortened/obfuscated URL is the same length as
the original, http://dnscurve.org
At Thu, 30 Jul 2009 22:16:47 +0700,
Le Vu lev@gmail.com wrote:
I have updated BIND from 9.4.2-P2 to 9.4.3-P3 to mitigate the Dynamic Update
DOS attack. I have noted a lot of errors from socket.c (which I have never
seen before with v9.4.2)
Jul 30 06:25:18 DNS1 named[2]:
Evan Hunt wrote:
reading carefully to the end of the line and notice that the 2006
Perhaps some people who did
validate the files were similarly incautious.
Or decided, taking account of the circumstances, not to treat
expired as a synonym for not trustworthy.
/Niall
On Thu, 2009-07-30 at 17:40 -0400, Joseph S D Yao wrote:
What does work is:
dig -y mynet.:Ain/tGonnaTellNoWay== axfr example.zone
@other.example.zone
but I really, really find this not altogether pleasant.
This gets a bit more funkie when you are not using the default
key-algorithm of
For those of you using the canned RHEL BIND packages they sent out
errata information for RHEL3, RHEL4 and RHEL5 overnight. They've
backported the fix into the BIND 9 versions used.
As noted in QA here the dynamic update issue affects all BIND 9 but
only 9.4 on were patched by ISC so if
I've got a monitoring script in place that does an rndc stats and
parses the output, then graphs it for me nicely.
Yesterday I needed to flush the cache on a number of my servers, and I
saw a big spike in queries recorded by the server in the success
category. The spike was about 40% more than
On Fri, Jul 31, 2009 at 06:25:50AM -0700, Jeff Lightner wrote:
For those of you using the canned RHEL BIND packages they sent out
errata information for RHEL3, RHEL4 and RHEL5 overnight. They’ve
backported the fix into the BIND 9 versions used.
As noted in QA here the dynamic update issue
On Fri, Jul 31, 2009 at 10:58 AM, Toddcanada...@gmail.com wrote:
I've got a monitoring script in place that does an rndc stats and
parses the output, then graphs it for me nicely.
How is this being monitored?
Are you sure its not an artifact of your monitoring software?
I see this behaviour
Nope, no such file exists. I've got bak.* for all my other zones, but
not that one.
The filename you use to *save* the zone file as is arbitrary, try
blah-blah
How do I specify that?
___
bind-users mailing list
bind-users@lists.isc.org
With the file statement in the zone declaration for that zone.
Zone 0/27.146.68.12.in-addr.arpa {
...
file blah-blah;
# orfile 0.27.146.68.12.in-addr.arpa; as I believe Mark Andrews suggested
...
};
(See also Jeff Lightner's example earlier in this thread.)
With the file statement in the zone declaration for that zone.
Zone 0/27.146.68.12.in-addr.arpa {
...
file blah-blah;
# or file 0.27.146.68.12.in-addr.arpa; as I believe Mark Andrews
suggested
...
};
(See also Jeff Lightner's example earlier in this thread.)
Le Vu,
lev BTW, what can I do to help debugging this problem? If it doesn't
lev involve with programming I will try.
Submit this to ISC by emailing bind9-b...@isc.org.
Thanks!
___
bind-users mailing list
bind-users@lists.isc.org
On Fri, Jul 31, 2009 at 03:32:48PM +1000, Mark Andrews wrote:
In message 20090730174054.h23...@gwyn.tux.org, Joseph S D Yao writes:
...
Plus, I'm curious to know what 'dig -k' really wants to see.
A keyfile as generated by dnssec-keygen -a HMAC-*.
...
Of which there are two - a .key file
In message 20090731171804.b23...@gwyn.tux.org, Joseph S D Yao writes:
On Fri, Jul 31, 2009 at 03:32:48PM +1000, Mark Andrews wrote:
In message 20090730174054.h23...@gwyn.tux.org, Joseph S D Yao writes:
...
Plus, I'm curious to know what 'dig -k' really wants to see.
A keyfile as
Does anyone knows if there is any solaris .pkg distribution for BIND 9.6.1-P1?
Im looking to replace old versions as per:
https://www.isc.org/node/474
Thank you,
Julian___
bind-users mailing list
bind-users@lists.isc.org
Does anyone knows if there is any solaris .pkg distribution for BIND 9.6.1-P1?
Im looking to replace old versions as per:
https://www.isc.org/node/474
Thank you,
Julian___
bind-users mailing list
bind-users@lists.isc.org
Todd wrote:
Yesterday I needed to flush the cache on a number of my servers, and I
saw a big spike in queries recorded by the server in the success
category. The spike was about 40% more than the usual traffic.
After a cache flush, the server has to re-fetch glue and nameserver
records from
On Sat, Aug 01, 2009 at 08:07:16AM +1000, Mark Andrews wrote:
...
Network Working GroupD. Eastlake 3rd
Request for Comments: 4635 Motorola Laboratories
Category: Standards TrackAugust 2006
...
Yah,
Hi All,
I am working on a project need libresolv support on windows, and I tried to
build libbind 6.0 using mingw but failed.
So anyone know where to find a libbind 6.0 prebuild for windows? Or give me
some hints how to build libbind on windows.
--
Best Regards.
-Vincent
20 matches
Mail list logo