On Wed, 19 Mar 2025, Lowry-Schiller, Dell M CTR (USA) via bind-users wrote:
> I run this command and it works fine ./configure --prefix=/usr/local/b
> ind-9.9.6 --sysconfdir=/etc --localstatedir=/var --enable-threads --with-ope
> nssl
I suspect this configure step did not work fine
or you r
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
https://www.five-ten-sg.com/mapper/bind contains links to the source
rpm, and build instructions. This .src.rpm contains a .tar.gz file with
the ARM documentation, so the rpm rebuild process does not need sphinx-
build and associated dependencies.
Maybe I'm not understanding all the nuances of the stated goal but doesn't
RPZ handle this?
Bob
Sent from my Google Pixel 8a phone.
--
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list
ISC funds the development of this software with paid support subscription
Hi again,if this is something that is going to be open-source and the whole BIND 9 users community would benefit from this, I would love to hear and see more.Ondrej--Ondřej Surý — ISC (He/Him)My working hours and your working hours may be different. Please do not feel obligated to reply outside you
On Wednesday, March 19, 2025 3:40:28 PM CET Mónika Kiss wrote:
> Hello,
>
> Thank you for your response.
>
> I have a domain categorization program written in C that dynamically
> determines the risk level of a queried domain.
> I need to integrate this categorization logic into a BIND 9 plugin t
Michael,
you can hardly create a static list from all of the domains that can possibly
exists.
I do understand the usefulness of dynamic classification.
There’s just not a straightforward interface for it now. Somebody will have to
invest into writing this :shrug:
Ondrej
--
Ondřej Surý — ISC
Thinking aloud - perhaps, we can extend the plugin API (and RPZ) in a way to add the classification to the message processing and then the RPZ processing could read the classification and take an action?But that’s quite a huge chunk of work.As I said, there was an attempt to rewrite dns64 as a plug
Hello,
Thank you for your response.
I have a domain categorization program written in C that dynamically
determines the risk level of a queried domain.
I need to integrate this categorization logic into a BIND 9 plugin that:
- Calls the categorization function to analyze each incoming DNS que
You can set 'purge-keys' to a value you feel comfortable with. By
default it is set to 90 days, so after 90 days the key is completely
hidden, it will be removed from disk.
Best regards,
Matthijs
On 19-03-2025 09:29, adrien sipasseuth wrote:
Hello,
I use Bind 9.20.4, with KASP policy to set
On Wednesday, March 19, 2025 3:01:48 PM CET Bob McDonald wrote:
> Maybe I'm not understanding all the nuances of the stated goal but doesn't
> RPZ handle this?
Was my first thought as well, works fine for me.
In named.conf:
options {
// RPZ zone
// Source: https://deteque.com/m3a
Hi Mónika,
I concur the documentation is a bit scarce, have you looked at the existing
plugins? This might give you a little bit of guidance.
Additionally, we have at least one more MR with the unfinished plugin in the
GitLab. It’s kind of old, but it is a different from the filter_a/filter_aaa
Hi,
I think you basically have couple of options:
1. use ISC provided packages: https://copr.fedorainfracloud.org/coprs/isc/; I
would strongly recommend this option
2. learn what you are really doing and debug this properly. You haven't
provided any actionable information.
3. oh, then there's
Am 19.03.2025 um 13:23:09 Uhr schrieb Lowry-Schiller, Dell M CTR
\(USA\) via bind-users:
> Message: I am following the instructions provided in the knowledge
> base and I am having issues with the upgrade of my bind server to
> version 9.20.6 I am currently on version BIND 9.16.23-RH
This indicat
Message: I am following the instructions provided in the knowledge base and I
am having issues with the upgrade of my bind server to version 9.20.6 I am
currently on version BIND 9.16.23-RH
I run this command and it works fine ./configure
--prefix=/usr/local/bind-9.9.6 --sysconfdir=/etc -
Dear BIND Users,
My name is Monika Kiss and I am currently working on a custom DNS
filtering plugin for BIND 9 and I would appreciate your guidance on a few
technical aspects. My goal is to intercept certain DNS queries and return a
custom IP address instead of forwarding them to an upstream r
Hello,
I use Bind 9.20.4, with KASP policy to setup DNSSEC on some zone.
When a KSK are "hidden" and present with "rndc dnssec -status ",
i moved it to an archive repository.
But this generate many logs :
mars 19 09:15:46 xxx named[2378461]: 19-Mar-2025
09:15:46.149 dnssec: error: zon
16 matches
Mail list logo
