rndc reconfig causing long timeouts
Brad Knowles
brad at stop.mail-abuse.org
Mon Oct 3 23:50:47 UTC 2005
At 6:32 PM -0400 2005-10-03, Dave Clark wrote:
> Ya know, I think I've thought of something. Perhaps a rndc command may be
> given to read a specific named configuration file.
There is already "rndc reconfig", which will cause BIND to
re-read the configuration file it has confirmed is secure. You're
done.
The real trick is getting changes made to that configuration
file, without having to resort to tricks like rsync or ftp. And no,
specifying a path within the rndc command is not going to work.
That's just not secure.
--
Brad Knowles, <brad at stop.mail-abuse.org>
"Those who would give up essential Liberty, to purchase a little
temporary Safety, deserve neither Liberty nor Safety."
-- Benjamin Franklin (1706-1790), reply of the Pennsylvania
Assembly to the Governor, November 11, 1755
SAGE member since 1995. See <http://www.sage.org/> for more info.
More information about the bind-users
mailing list