8.2.1 experiences please?
Paul A Vixie
paul at vix.com
Wed Jun 23 18:09:40 UTC 1999
> The comment is wrong. I remember sending a patch to the documentation a
> while ago, but it might have been lost somewhere. The secret should be
> base64 encoded, and TSIGs are implemented by the server.
please send another patch. there will be an 8.2.2 some day.
> > There really needs to be some form of detailed debugging for
> > TSIG, such as ns_debug() statements in ns_verify.c and
> > find_key() that print out key searches and the key and
> > algorithm in packets. For debugging I am using syslog() but
> > that can't stay.
>
> This is harder than it sounds. All of the TSIG processing (ns_sign and
> ns_verify) is in the nameser library, not the server. Since it can be
> called from outside the server, there's no way to know if logging has been
> set up. If anyone knows a way around this, let me know and I'll add more
> debugging.
the approach used by ctl_server() and ctl_client() should be workable.
just add a res_setlogger() that can override a new field "_logger" in
the "struct res". res_init() would set it to something that just did
the fprintf thing.
More information about the bind-workers
mailing list