From ArchWiki
Jump to: navigation, search

Updates to chroot instructions 2012/08

I just did the chroot and I had to add:

   cp /etc/rndc.key ${CHROOT}/etc/

I had to change the ownership/permissions on ${CHROOT}/var and ${CHROOT}/var/log to root:named 775 to get it to log. So either the user 'named' need's to be writing the logfiles or the permissions need to be changed. I'm still looking into this.

There should also be a note about updating the /etc/logrotate.d/named file the change the path to /chroot/named/var/log/named.log

I'd be happy to write this up but it's my first edit so I wouldn't mind having someone look over my shoulder.

UselessSgrant (talk)

Notes from BIND package maintainer

Let me make this entirely clear for everyone: - ldns and dnstools are query tools (their main use is to send a single DNS request to a resolving server, and display the request). - bind is a multi-purpose server. - nsd is an authoritative server. - unbound is a resolving server.

We will simply remove dnstools from [core] and replace it by ldns where needed; additionally, I will stop maintaining bind and suggest people switch to nsd (if they were using bind as an authoritative server) or unbound (if they were using bind as a resolving and/or caching server).

Closing this. BIND was adopted by another packager. BIND10 was turned into another project, and BIND9 is now what everyone is just calling "BIND". Rdeckard (talk) 12:47, 19 April 2016 (UTC)

DNSSEC - pointless link

The link in the DNSSEC section points to a very bad article, containing literally no information that couldnt be included here. There should be some sort of config help here. AFAIK you have to tweak config like this:

 options {
   dnssec-validation auto;
   dnssec-lookaside auto;

As i have not mutch of a clue of bind9 (and i dont plan to use it) i would appreciate if someone capable of verifying this could include this into the article. thanks! Fordprefect (talk) 10:06, 19 April 2016 (UTC)