-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Friday 23 November 2001 09:34 am, Mike Burger wrote:
> I've searched the man pages (such as they are), but I can't seem to
> find an answer.
>
> Just how do I enable BIND/named to listen on port 953, so as to accept
> rndc commands (such as reload)?
>
> running "rndc reload" gets me "rndc: connect: connection refused"
>
> and nmap shows me that the system isn't even listening on port 953.
>
> Thanks.
This took me a little bit to figure out as well. :)
The details can be found in:
/usr/share/doc/bind-9.1.0/arm/Bv9ARM.ch03.html
(section 3.4.1.2. Administrative Tools)
Short version:
In the file /etc/named.conf:
controls {
inet 127.0.0.1 allow { localhost; } keys {"key"; };
};
key "key" {
algorithm hmac-md5;
secret "Yoursecretkeyhere";
};
In /etc/rndc.conf:
server localhost {
key "key";
};
key "key" {
algorithm hmac-md5;
secret "Yoursecretkeyherealso";
Hope that helps,
- -D
- --
pgp key: http://www.tuxfan.homeip.net:8080/pgpkey.txt
- --
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE7/mQ0eMAUbzJhSVcRAvzMAKC9OBD3o1NiAhVcg01BajoMFniOBgCePnGD
nsFNJ8gYperfIpDFuQbT+dk=
=W1R1
-----END PGP SIGNATURE-----
_______________________________________________
Seawolf-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/seawolf-list
