Add more changes relating to authorative only servers #53
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
* ensure that the named dir exists * add bind group * change some defaults and only add dnssec resolver functions if we * recurse bla
Contributor
Author
|
Just noticing this old pull request and wondered if it received any review |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This change disables, the following parameters as they are not relevant in authoritative only server and where causing high CPU usage
I have also changed the default value for dnssec-lookaside, this gives recursive operators a method of disabling dnssec-lookaside. I have added an additional parameter for bindkeys_file instead of having one hard coded in server.conf. the one you have in your config dose not exist on ubuntu 12.04 LTS however the default one (bind.keys) does. I also changed the default of dnssec-validation to auto which i think makes more sense then yes.
Finally it looks like this pull request has some documentation and a few other small fixes missed from my last pull
John