/dev/random in chroot jail causing errors with nsupdate of dnssec signed zone

So I posted a couple of message about how my nsupdates were failing intermittenly when attempting to update a signed zone. The only error I get in the log is: 14-May-2009 13:17:09.077 client 127.0.0.1#10277: view external: updating zone 'test.net/IN': prerequisites are OK 14-May-2009

RE: /dev/random in chroot jail causing errors with nsupdate of dnssec signed zone

One other thing: when I remove /dev/random from the chroot, bind just uses the pre-chroot /dev/random 14-May-2009 14:09:51.065 could not open entropy source /dev/random: file not found 14-May-2009 14:09:51.065 using pre-chroot entropy source /dev/random which is groovy. So I guess I dont need the

Re: file descriptors and max-clients-per-query

On Thu, 14 May 2009, Philippe Maechler wrote: Hello Everybody I'm running a bind 9.4.2-p2 and a 9.5.1-P1 both on a FreeBSD 6.x box as caching servers. let's call them ns1 and ns2 :P short after we shutdown server one we get error messages on the other server - socket: too many open file

GSS-TSIG and bind 9.6

HI All I have been working to get dynamic updates working with bind-9.6 and FreeBSD 7 So far I have done the following: 1. Compiled bind with GSSAPI enabled. 2. Added these to named.conf options { ... tkey-gssapi-credential DNS/mydomain.com; ... }; and

AW: file descriptors and max-clients-per-query

Hello Jeremy I'm running a bind 9.4.2-p2 and a 9.5.1-P1 both on a FreeBSD 6.x box as caching servers. let's call them ns1 and ns2 :P short after we shutdown server one we get error messages on the other server - socket: too many open file descriptors What is the other

Re: GSS-TSIG and bind 9.6

Any reason you have chosen gas vs. TSIG? Is this for a windows environment? On May 14, 2009, at 7:37 AM, Peter Fraser petros.fra...@gmail.com wrote: HI All I have been working to get dynamic updates working with bind-9.6 and FreeBSD 7 So far I have done the following: 1. Compiled bind

Re: GSS-TSIG and bind 9.6

Yes it is. On Thu, May 14, 2009 at 11:36 AM, Doug Barton do...@dougbarton.us wrote: Any reason you have chosen gas vs. TSIG? Is this for a windows environment? On May 14, 2009, at 7:37 AM, Peter Fraser petros.fra...@gmail.com wrote: HI All I have been working to get dynamic updates

Re: /dev/random in chroot jail causing errors with nsupdate of dnssec signed zone

In message 4b18a8f75a6384449755bc7784073e93603b776...@exch11.olympus.f5net.com , Jack Tavares writes: One other thing: when I remove /dev/random from the chroot, bind just uses the pre-chroot /dev/random 14-May-2009 14:09:51.065 could not open entropy source /dev/random: file no= t found