[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Setting DNS Servers Manually?

To: Buchan Milne <bgmilne@mandriva.org>
Subject: Re: Setting DNS Servers Manually?
From: Michael B Allen <miallen@ioplex.com>
Date: Thu, 18 Oct 2007 11:45:15 -0400
Cc: heimdal-discuss@sics.se, "Henry B. Hotz" <hotz@jpl.nasa.gov>
In-Reply-To: <200710181245.46013.bgmilne@mandriva.org>
List-Archive: <http://list.sics.se/sympa/arc/heimdal-discuss>
List-Help: <mailto:sympa@sics.se?subject=help>
List-Id: <heimdal-discuss.sics.se>
List-Owner: <mailto:heimdal-discuss-request@sics.se>
List-Post: <mailto:heimdal-discuss@sics.se>
List-Subscribe: <mailto:sympa@sics.se?subject=subscribe%20heimdal-discuss>
List-Unsubscribe: <mailto:sympa@sics.se?subject=unsubscribe%20heimdal-discuss>
Organization: IOPLEX Software
References: <20071017173851.c6c1fc0c.miallen@ioplex.com><61562DC8-3EA4-46DE-8DE2-BD4C1649860D@jpl.nasa.gov><20071018015700.565d9cfe.miallen@ioplex.com><200710181245.46013.bgmilne@mandriva.org>
Reply-To: heimdal-discuss@sics.se, Michael B Allen <miallen@ioplex.com>

On Thu, 18 Oct 2007 12:45:45 +0200
Buchan Milne <bgmilne@mandriva.org> wrote:

> On Thursday 18 October 2007 07:57:00 Michael B Allen wrote:
> > On Wed, 17 Oct 2007 21:44:17 -0700
> >
> > "Henry B. Hotz" <hotz@jpl.nasa.gov> wrote:
> > > I'm not sure I understand.
> > >
> > > If you put everything in the krb5.conf then it doesn't need to do SRV
> > > record lookup.  You could setenv KRB5_CONFIG to an application-
> > > specific config file.  Maybe you can even put the Krb servers in as
> > > IP numbers instead of DNS names.  Was that the sort of thing you were
> > > looking for?
> >
> > Hi Henry,
> >
> > Actually I already do that mostly. I bypass the SRV lookups by doing
> > those myself. And I added a krb5_config_set function to set the kdc
> > (and kpasswd_server for password setting). But still libkrb5 needs to
> > do at least A record lookups and I wouldn't be surprised to find some
> > logic that still provokes SRV lookups or need to do them for some reason.
> >
> > Converting to IP before krb5_config_set-ing seems seems like it could
> > lead to trouble since Kerberos needs FQDNs to pick out realms, generate
> > names, etc.
> >
> > Also, what I really want to do is channel all DNS queries through my
> > DNS lib so I provide consistent DNS server fallback behavior, caching,
> > server "stickiness", etc.
> >
> > But for now I would be happy if I could just overload gethostbyname. So
> > basically I want to create a 'libmyresolv' that has a my_gethostbyname
> > function and then modify Heimdal to use it. Unfortunately the libmyresolv
> > would need to link with my libs that link with Heimdal which creates a
> > nasty circular dependency. Still haven't wrapped my head around that one.
> 
> 
> Not necessarily, if the function names are the same as libresolv, you should 
> in theory be able to set LD_PRELOAD to your libmyresolv.

Hi Buchan,

Nah, I can't use LD_PRELOAD. This needs to be a solid long term solution.

> And maybe you should consider contributing your changes upstream, so none of 
> this is necessary in future, and *all* apps on the host benefit from this.

You mean all Heimdal apps? Yeah, sure. If Love would accept a dlopen
plugin that might be a good way to go. That would solve my circular
dependency too.

Coupled with the recent CC ops plugin discussion perhaps Heimdal would
benefit from a generic modules interface with a modules directory
containing mod_ccmmap.so, mod_resolv.so, etc.

Mike

-- 
Michael B Allen
PHP Active Directory SPNEGO SSO
http://www.ioplex.com/

References:
- Setting DNS Servers Manually?
  - From: Michael B Allen <miallen@ioplex.com>
- Re: Setting DNS Servers Manually?
  - From: "Henry B. Hotz" <hotz@jpl.nasa.gov>
- Re: Setting DNS Servers Manually?
  - From: Michael B Allen <miallen@ioplex.com>
- Re: Setting DNS Servers Manually?
  - From: Buchan Milne <bgmilne@mandriva.org>

Prev by Date: Re: Setting DNS Servers Manually?
Next by Date: lists for sale
Prev by thread: Re: Setting DNS Servers Manually?
Next by thread: Re: Setting DNS Servers Manually?
Index(es):
- Date
- Thread