ICP Permit
Webmail
Newsletters
SupportThis is a bit boring for non-techies, but useful for me as reference when I install a new server.
Sets up a a DNS caching server for the computer in question in order to speed up apache lookup, mail resolving etc.
Below assumes that server has no daemontools yadda yadda installed.
Setup in a shell script, and run as root. (If you trust me.)
Note, mostly filched from here – http://hydra.geht.net/tino/howto/linux/djbdns/ (Thanks!)
mkdir -p /downloads cd /downloads wget http://cr.yp.to/djbdns/djbdns-1.05.tar.gz wget http://cr.yp.to/ucspi-tcp/ucspi-tcp-0.88.tar.gz wget http://cr.yp.to/daemontools/daemontools-0.76.tar.gz # Unpack patches wget http://www.qmail.org/netqmail-1.05.tar.gz tar xfz netqmail-1.05.tar.gz # Compile the easy stuff rm -rf djbdns-1.05 tar xfz djbdns-1.05.tar.gz ( cd djbdns-1.05; patch < ../netqmail-1.05/other-patches/daemontools-0.76.errno.patch; ) ( cd djbdns-1.05; make; ) rm -rf ucspi-tcp-0.88 tar xfz ucspi-tcp-0.88.tar.gz patch -p0 < netqmail-1.05/other-patches/ucspi-tcp-0.88.errno.patch ( cd ucspi-tcp-0.88; make; ) # Install the easy stuff ( cd djbdns-1.05; make setup check; ) ( cd ucspi-tcp-0.88; make setup check; ) # Now compile and install daemontools. # As this is run from /sbin/init this must live in root / HERE="`pwd`" mkdir -p /package chmod 1755 /package cd /package rm -rf admin/daemontools-0.76 tar xfz "$HERE"/daemontools-0.76.tar.gz ( cd admin; patch -p0 <"$HERE"/netqmail-1.05/other-patches/daemontools-0.76.errno.patch; ) cd admin/daemontools-0.76 package/install # Restart init to let init execute svscanboot init q # Add the resolver groupadd dnscache useradd -g dnscache dnscache useradd -g dnscache dnslog /usr/local/bin/dnscache-conf dnscache dnslog /var/dnscache ln -s /var/dnscache /service svc -u /service/dnscache # Fix the nameservers to point to current ICANN structure # This assumes you have dig installed { echo "nameserver 127.0.0.1" cat /etc/resolv.conf } >/etc/resolv.conf.new mv --backup=t /etc/resolv.conf.new /etc/resolv.conf # Patch in the current list of root servers for a in a b c d e f g h i j k l m do dig +short $a.root-servers.net. done > /var/dnscache/root/servers/\@ svc -d /service/dnscache svc -u /service/dnscache
Do you like this article? Share It!
2 Comments to “Crib notes for setting up DJBDNS on Debian Lenny”
Post comment
Archives
- December 2011
- November 2011
- October 2011
- September 2011
- July 2011
- May 2011
- April 2011
- March 2011
- February 2011
- January 2011
- December 2010
- November 2010
- October 2010
- September 2010
- August 2010
- July 2010
- June 2010
- May 2010
- April 2010
- March 2010
- February 2010
- January 2010
- December 2009
- November 2009
- October 2009
- May 2009
- April 2009
- March 2009
- February 2009
- January 2009
- December 2008
- November 2008
- October 2008
- September 2008
Categories
- Apple
- Badges
- BMW
- China Related
- Cool Hunting
- Exploits
- Firmware
- Food
- General Talk
- government
- IP Cam
- iPhone
- Lasers
- legislation
- MODx
- MySQL
- requirements
- Service Issues
- Tao Bao
- Technical Mumbo Jumbo
- Things that will get me censored
- Travel
- Uncategorized
- Useful Info
Most Popular Posts
- Samsung N310 (Samsung Go) Hackintosh Installation on Snow Leopard (9996)
- BMW Keys and Transponders E36 E38 E46 etc (EWS2) (7283)
- eFrontWPI - Wordpress integration Plugin for eFront (7148)
- IPCam Hacking - pt#2 (6539)
- IP Cam Hacking – pt#5 (4412)
Tags
adsl
Apache
Apple
arm7
bmw
china
china telecom
Chinese Spyware Removal Howto
coffee
cool
debian
disassembly
dns
firmware
foscam
Google
government
hacking
hardware
how to
howto
icp
ipcam
iPhone
Kitto
krups
licence
Mac
miibeian
mini3i
nc745
nespresso
nuvoton
ophone
outage
problem
Replace
shanghai
spam
taobao
Thoughts
Time Machine
Tuning
uclinux
video
Recent Comments
-
tryphon: It helped me to fix mine. I used a pair of pliers like you did and it worked fine. I drink a coffee typing...
-
mark: I have a ms10105 v4.1 moshisoft board and here is the pinout: 1 y stepper a (yellow) 2 y stepper a (white) 3...
-
Lawrence Sheed: Haven’t taken a deep look yet, probably next month can check it out. There are people who are...
-
-
Kunlun: I tried to get my motorbike lesson after my car driving lesson, they answered me that I needed to wait 1...
Recent Trackbacks
- SISTEMAS O.R.P: Recuperar una cámara Zaapa CIP-RW después de un fallo de actualización
- Blog - DO Bots: Brookstone Rover AC13
- How can I stop Pop3 Brute Force attacks: need to create a regex, and add it to fail2ban Here is a guide....
- shanghailoz is our latest member! -:
- Probleem bij installatie op Samsung N310:
PHOTOSTREAM
Lenny includes package djbdns (permitted by the license change).
You still have to manually create the group and users though.
And you don’t get the handy init scripts that djbdns-installer installed.
Package dbndns (DeBiaN DNS) is a fork that includes the IPv6 patch.
I’ve looked, but its not packaged as an easy replacement, it has other services and bit and bobs attached it wants to install, and those will fight with my existing setup.
My way is slightly harder, but infinitely more customizable for my needs, so I consider the extra 10 minutes spent worth it.
I usually build new servers every now and then with different methods just to see if I can improve.
Quite happy with my software choices though from a security and maintenance perspective. From an install perspective, not great, but not too onerous. Automation is the issue though, and I have been looking at solutions. eg Puppet, although also with the aim of giving myself a project with that for the experience.
Phew, long answer!