Hello Vladimír,

my last question regarding redirected wildcard domain.

Would be the list "blacklist.rpz" accepted by the application immediately if the list would be dynamically changed(modified?, adding lines, removing lines ...)? Or the application has to be restarted?

In the past, I asked for help in the case when a hints file with static records would be changed and the answer was a hack to copy it in a running PID - "/var/cache/knot_resolver/tty/PID" 
like 
#echo "hints.config('/etc/knot-resolver/static_records.txt')" | nc -U #PID

where #PID is information in /var/cache/knot_resolver/tty/

Should it be the same for RPZ?

Could you please advise me, which parameter in the config is affected?

Thank you for any response,
best regards, 
--
Smil Milan Jeskyňka Kazatel


On 1/16/20 3:30 PM, Milan Jeskynka Kazatel wrote:
> but your solution could not be applied, it is recommended by law to
> give an answer with redirected address with the explanation why it was
> redirected. [...]

OK, it's not a nice way, but there is one:
https://gitlab.labs.nic.cz/knot/knot-resolver/issues/194#note_94768

Well, I personally don't like rewriting DNS and prefer NXDOMAIN or
NODATA if you have to block, but I understand it has advantages in this
case.

--Vladimir