I see, my major issue with the knotc is that it isn't clear which commands
are remote and which are not,
some require configuration and some not etc. But it is useful because of
the '-w' flag. Even if we decide to remove it, we'll keep it for some time
as a deprecated.
Just some remarks regarding the rc script (I am on git master all the time,
so never had the chance to use it) -
The '-a' flag is default for some time and will be removed in the next
release.
The 'running' command is now 'status' since 1.2.
Marek
On 23 April 2013 14:47, Erwin Lansing <erwin(a)dk-hostmaster.dk> wrote:
On Apr 23, 2013, at 2:46 PM, Erwin Lansing
<erwin(a)dk-hostmaster.dk> wrote:
Hi Marek,
Indeed, I use the default FreeBSD rc script that is included in the
port[1], which
uses knotc to start. It works fine by calling knotd
directly.
I've hacked the rc script locally so it works
for now, if the knotc
start/stop command disappear we'll just have to rewrite
the rc script a
bit, but won't be a problem at all.
And the 1 in the mail above:
http://svnweb.freebsd.org/ports/head/dns/knot/files/knotd.in?revision=30089…
Erwin
> Thanks,
> Erwin
> On Apr 23, 2013, at 2:32 PM, Marek
Vavruša <marek.vavrusa(a)nic.cz> wrote:
>> Hi Erwin, are you by any chance
starting it with knotc? I realized
there is a problem, because knotc needs to create
> an empty PID file to indicate that knotd
instance is starting. But it
mustn't drop privileges before starting knotd so
it could result in PID
file created in an inaccessible location. I have corrected this behavior
and knotc start should work well in this case as well (will be included in
the next release). In meantime, you can start it with running knotd
directly (or knotd -d for daemonized mode). This should correctly drop
privileges and run. I am almost thinking that keeping 'knotc start/stop'
doesn't bring any extra benefit since it doesn't do anything extra.
>
Cheers,
> Marek
>
> On 23 April 2013 13:13, Erwin Lansing <erwin(a)dk-hostmaster.dk> wrote:
> Thanks for the 1.2.0, some really nice features in there. I especially
like
the zonestatus command.
>
I have one problem though. It seems that knot drops its root
privileges too early,
before trying to bind to the interface.
> Configured with:
> system { user bind.bind };
> Results in:
> Apr 23 12:26:26 l knot[25585]: [error] Could not bind to UDP interface
127.0.0.1 port 53.
> Apr 23 12:26:26 l knot[25585]: [error] Could
not bind to UDP interface
::1 port 53.
>
Changing to root.bind, makes it work, hence my guess it's related to
dropping
privileges. This is on FreeBSD 9.0.
>
Any hints appreciated.
>
> Best,
> Erwin
>
>
> --
> Med venlig hilsen/Best Regards
> Erwin Lansing
> Network and System Administrator
>
> DK Hostmaster A/S
> Kalvebod Brygge 45, 3. sal
> 1560 København V
>
> Tlf. 33 64 60 60
> Fax.: 33 64 60 66
> Email: erwin(a)dk-hostmaster.dk
> Homepage:
http://www.dk-hostmaster.dk
>
> .dk Danmarks plads på Internettet
>
>
-------------------------------------------------------------------------
> Dette er en e-mail fra DK Hostmaster A/S.
Denne e-mail kan indeholde
> fortrolig information, som kun er til brug for den tiltænkte modtager.
> Hvis du ved en fejl har modtaget denne e-mail, bedes du venligst straks
> give afsenderen besked om dette og slette e-mailen fra dit system uden
> at offentliggøre, videresende eller tage kopi af meddelelsen.
>
> This is an email from DK Hostmaster A/S. This message may contain
> confidential information and is intended solely for the use of the
> intended addressee. If you are not the intended addressee please notify
> the sender immediately and delete this e-mail from your system. You are
> not permitted to disclose, distribute or copy the information in this
> e-mail.
>
--------------------------------------------------------------------------
>>
>> _______________________________________________
>> knot-dns-users mailing list
>> knot-dns-users(a)lists.nic.cz
>>
https://lists.nic.cz/cgi-bin/mailman/listinfo/knot-dns-users
>>
> --
> Med venlig hilsen/Best Regards
> Erwin Lansing
> Network and System Administrator
> DK Hostmaster A/S
> Kalvebod Brygge 45, 3. sal
> 1560 København V
> Tlf. 33 64 60 60
> Fax.: 33 64 60 66
> Email: erwin(a)dk-hostmaster.dk
> Homepage:
http://www.dk-hostmaster.dk
> .dk Danmarks plads på Internettet
>
-------------------------------------------------------------------------
> Dette er en e-mail fra DK Hostmaster A/S. Denne e-mail kan indeholde
> fortrolig information, som kun er til brug for den tiltænkte modtager.
> Hvis du ved en fejl har modtaget denne e-mail, bedes du venligst straks
> give afsenderen besked om dette og slette e-mailen fra dit system uden
> at offentliggøre, videresende eller tage kopi af meddelelsen.
> This is an email from DK Hostmaster
A/S. This message may contain
> confidential information and is intended solely for the use of the
> intended addressee. If you are not the intended addressee please notify
> the sender immediately and delete this e-mail from your system. You are
> not permitted to disclose, distribute or copy the information in this
> e-mail.
--------------------------------------------------------------------------