Possible spnego licensing problem
The file spnego.asn1 in lib/dns appears to be non-free. It says to look at RFC 4178 for the full legal notice and RFC 4178 is under a non-free license. The file spnego.asn1 is also used to generate other files. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Possible spnego licensing problem
Hi Israel On Mon, Feb 02, 2015 at 03:05:43AM -0500, israel shahak wrote: > The file spnego.asn1 in lib/dns appears to be non-free. It says to > look at RFC 4178 for the full legal notice and RFC 4178 is under a > non-free license. The file spnego.asn1 is also used to generate other > files. The contents of the file are taken (adapted) from here: https://tools.ietf.org/html/rfc4178#page-16 IETF has published RFC 3978 about "IETF Rights in Contributions": https://tools.ietf.org/html/rfc3978 From this: > 3.3. Granting of Rights and Permissions > >By submission of a Contribution, each person actually submitting the >Contribution, and each named co-Contributor, is deemed to agree to >the following terms and conditions, and to grant the following >rights, on his or her own behalf and on behalf of the organization >the Contributor represents or is sponsored by (if any) when >submitting the Contribution. > > >a. To the extent that a Contribution or any portion thereof is > protected by copyright and other rights of authorship, the > Contributor, and each named co-Contributor, and the organization > he or she represents or is sponsored by (if any) grant a > perpetual, irrevocable, non-exclusive, royalty-free, world-wide > right and license to the ISOC and the IETF under all intellectual > property rights in the Contribution: [snip] > (E) to extract, copy, publish, display, distribute, modify and > incorporate into other works, for any purpose (and not limited > to use within the IETF Standards Process) any executable code > or code fragments that are included in any IETF Document (such > as MIB and PIB modules), subject to the requirements of > Section 5 (it also being understood that the licenses granted > under this paragraph (E) shall not be deemed to grant any > right under any patent, patent application or other similar > intellectual property right disclosed by the Contributor under > [RFC3979]). Mukund pgpdepk3i3D7z.pgp Description: PGP signature ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Possible spnego licensing problem
On Mon, Feb 02, 2015 at 02:07:11PM +0530, Mukund Sivaraman wrote: > The contents of the file are taken (adapted) from here: > https://tools.ietf.org/html/rfc4178#page-16 > > IETF has published RFC 3978 about "IETF Rights in Contributions": > https://tools.ietf.org/html/rfc3978 RFC 3978 is obsoleted by BCP 78, 79 but it was probably current for RFC 4178. What I had quoted from this is the contributor's grant to IETF, where "IETF" is described as: >a. "IETF": In the context of this document, the IETF includes all > individuals who participate in meetings, working groups, mailing > lists, functions and other activities which are organized or > initiated by ISOC, the IESG or the IAB under the general > designation of the Internet Engineering Task Force or IETF, but > solely to the extent of such participation. That doesn't exactly mean "general public", so does anyone else know where a license grant to implementors is documented? Mukund pgppmEhc_hauk.pgp Description: PGP signature ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Configuration
wu shuangrong wrote: > > I'd like to configure BIND in such way that when it failed to get result for > the first time, it'll query for the second time. Try adjusting resolver-query-timeout. Tony. -- f.anthony.n.finchhttp://dotat.at/ East Sole, Lundy, Fastnet: Mainly northerly or northeasterly 4 or 5. Moderate or rough. Showers. Good. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Possible spnego licensing problem
Mukund Sivaraman wrote: > That doesn't exactly mean "general public", so does anyone else know > where a license grant to implementors is documented? Section 4 of http://trustee.ietf.org/license-info/IETF-TLP-3.htm Tony. -- f.anthony.n.finchhttp://dotat.at/ Cromarty, Forth: Northwest 5 to 7 becoming variable 4. Moderate or rough. Wintry showers. Good. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Configuration
On Feb 2, 2015, at 4:02 AM, Tony Finch wrote: > wu shuangrong wrote: >> >> I'd like to configure BIND in such way that when it failed to get result for >> the first time, it'll query for the second time. > > Try adjusting resolver-query-timeout. That will not help if the FIRST connection is hitting a tar-pit. (not saying that is happening, but it’s certainly possible) -- Gentlemen, you can't fight in here! This is the War Room. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Configuration
LuKreme wrote: > On Feb 2, 2015, at 4:02 AM, Tony Finch wrote: > > wu shuangrong wrote: > >> > >> I'd like to configure BIND in such way that when it failed to get result > >> for > >> the first time, it'll query for the second time. > > > > Try adjusting resolver-query-timeout. > > That will not help if the FIRST connection is hitting a tar-pit. There is a timeout of at most 9 seconds on queries from BIND's resolver to upstream servers (which gets adjusted based on measured RTT), and a configurable overall query timeout (using the above setting) of between 10 and 30 seconds. Tony. -- f.anthony.n.finchhttp://dotat.at/ Viking, North Utsire, South Utsire: Northerly 5 to 7. Rough or very rough. Wintry showers. Good. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
BIND w/ Lync?
We have a Lync 2013 environment with all of its DNS records living within our primary domain (esri.com). I have a need to override all of the Lync related DNS records so that they resolve differently for a set of client IP's (clients which connect via VPN). Unfortunately, the only solution I'm really seeing right now is an ugly one -- setting up a new view for this set of clients and then creating 25+ zones -- one zone per record I want to override (so that the primary domain -- esri.com, still gets handled correctly). Maybe I can get away with fewer overrides, but right now that's the size of the list I have. Even 10-15 isn't pretty from a management standpoint. Maybe I could somehow do this with RPZ? Hmm. We also have some F5's with the GTM module which I *believe* would let us do some DNS type overriding, but have never dug into it before. Using stock Red Hat provided BIND on RHEL 6.x. Thanks, Ray ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
