Simon Kelley:
>>Allow --log-facility=- to force all logging to
>>stderr. Suggestion from Clemens Fischer.
Clemens Fischer:
> I have all daemons running supervised by runsv, where the logs go to
> stderr and the superviser process manages a pipe between the daemon and
> th
bles games necessary.
--
Matthias Andree
least the character representation will be the same, so that
documentation would likely suffice for dnsmasq.
/bld is a place to keep build infrastructure, rather than cluttering up
the root directory.
Fine.
Cheers
--
Matthias Andree
ade sense at the
time!
Well at least they are side to side with the .o files which also end up in
src/, and then I wonder what the bld/ directory is for if it's static. I
would've guessed from the name that bld/ is build/ and hence where the
outputs are supposed to end up, but apparently not so. :)
Cheers
--
Matthias Andree
off-list (or at least Cc:
me), and general feedback on the software to Simon or the list.
Thank you.
Best regards
--
Matthias Andree
ind
counterintuitive.
- The German translation is - with 17/313 messages - so incomplete it's
not worth shipping. I don't have sufficient time to do it on short notice
though, so I'll not try.
Best regards
Matthias
--
Matthias Andree
Piero schrieb:
> Hi there,
>
>I have a strange issue with DNSMasq: it looks like it saves dns
> cached query and keep them after a restart.
> Here is the problem: the host opaplnx13 didn't reverse lookup and I
> saw this in DNSMasq logs. I fixed the problem in "master DNS servers"
> and they a
with besides the point that the original poster was making, and that
deserves a comment.
--
Matthias Andree
the original posting/pain anyways.
Running firewalls on outdated kernels is as dangerous as it can get - some
code injection might disable your firewall and then expose your whole LAN.
--
Matthias Andree
Markus Bergholz schrieb:
> dnsmasq emty his cache after restart, how to prevent it?
>
> greetz
I guess you need to write code and documentation to save and reload the cache
across restarts, and contribute both.
-
___
Dnsmasq-discuss mailing list
Dnsmasq-discuss@lists.thekelleys.org.uk
http://lists.thekelleys.org.uk/mailman/listinfo/dnsmasq-discuss
End of Dnsmasq-discuss Digest, Vol 49, Issue 9
******
___
Dnsmasq-discuss mailing list
Dnsmasq-discuss@lists.thekelleys.org.uk
http://lists.thekelleys.org.uk/mailman/listinfo/dnsmasq-discuss
--
Matthias Andree
On Tue, 21 Oct 2008, Simon Kelley wrote:
> Matthias Andree wrote:
>> Simon Kelley writes:
>>
>>> Update example config dhcp option 47, the previous
>>> suggestion generated and illegal, zero-length,
>>> option.
Simon Kelley writes:
> Update example config dhcp option 47, the previous
> suggestion generated and illegal, zero-length,
> option. Thanks to Matthias Andree for finding this.
I haven't looked at your release candidate (code & docs) yet. Un
gt; have option 47 in it at all so that isn't causing the problem for me.
Check /var/log/messages and see why it refuses the address, or check with
tshark/tcpdump what happens on the wire.
--
Matthias Andree
tion 47 records in violation of RFC-2132...
> If not,
> I'm inclined simply to delete that line from the example file, or maybe
> change to to show how to set the scope to "example.com" or similar.
Your suggestion seems sensible to me.
Workaround: leave dhcp-option=47 commented out...
--
Matthias Andree
liance with RFC-2132, or, a bit stricter, make sure that this option
isn't sent with zero length.
Reference:
bug report against dhcpcd
<http://bugs.marples.name/show_bug.cgi?id=112>
Thanks in advance & best regards
--
Matthias Andree
that's not the point here.
Conclusion: there should be still some configurable privilege-dropping
(for instance setuid(uid-of-dnsmasq-user)) for situations where
capability-dropping doesn't work, even if the latter has been enabled at
compile time.
--
Matthias Andree
On the Linux client? There are several dhcp client software options
(dhcpcd, dhclient, to name two), and each of them is somewhat
configurable, too.
--
Matthias Andree
tter
#define _LARGEFILE_SOURCE 1
#define _FILE_OFFSET_BITS 64
or the equivalent on the compiler and linker command lines - the
canonical way to obtain these flags would be to use getconf(1) to query
LFS_CFLAGS, LFS_LIBS, LFS_LDFLAGS.
This works at least on Solaris and Linux.
--
Matthias Andree
e partition. I think a 2 gig limit is more
> than reasonable for a log file limit. If it gets that big, there is
> likely something wrong or misconfigured anyway.
There's always ulimit (some shells call it limit) where you can
configure maximum file sizes according to your specific desires.
--
Matthias Andree
q.d as a file, so I can keep my main
> conf file cleaner ...
This has apparently to do with implementation idiosyncrasies (to put it
politely) in common WPAD clients (might that be Internet Explorer?) -
similar considerations (stuff blank or line feed) also hold if you're
using ISC dhcpd.
--
Matthias Andree
.h is missing.
For lack of time, I stopped there and didn't try just adding GNU's for
the sake of experiment or look around on the system - just in case
you're interested to know.
Best regards, and keep up the good work.
--
Matthias Andree
he corresponding hardware can be blacklisted versus checksum
offloading, lest other fall into the same pit...
--
Matthias Andree
t
detect and ward off a particular attack, rather than fixing the root
of the problem - I chose to go for the latter.
--
Matthias Andree
an address pool in OpenVPN 2.0 and hand out IPs from there
dynamically (well, unless you run out of IPs, they can be made static
just like they are in DHCP). Check the OpenVPN HOWTO for the "server"
(or perhaps "server-bridge" in your setup if you're using TAP) and the
ifconfig-pool-persist options.
--
Matthias Andree
nsmasq -x /var/run/dnsmasq/dnsmasq.pid -d"
> (note the "-d") it works.
Try: man dnsmasq
> Is this a knowing behavior or a bug? What am I doing wrong?
It is even documented behavior and certainly not a bug.
--
Matthias Andree
ogus-nxdomain=64.94.110.11
srv-host=_ldap._tcp.example.org
dhcp-host=00:30:05:XX:XX:XX,maggie
maggie has an entry in /etc/hosts-dnsmasq:
10.1.163.9 maggie
In case you're wondering, there's a current BIND 9 listening on
127.0.0.1 and ::1, port 53.
Thanks in advance for any help offered.
Kind regards,
--
Matthias Andree
101 - 127 of 127 matches
Mail list logo