This is a bit boring for non-techies, but useful for me as reference when I install a new server.
Sets up a a DNS caching server for the computer in question in order to speed up apache lookup, mail resolving etc.
Below assumes that server has no daemontools yadda yadda installed.
Setup in a shell script, and run as root. (If you trust me.)
Note, mostly filched from here – http://hydra.geht.net/tino/howto/linux/djbdns/ (Thanks!)
mkdir -p /downloads cd /downloads wget http://cr.yp.to/djbdns/djbdns-1.05.tar.gz wget http://cr.yp.to/ucspi-tcp/ucspi-tcp-0.88.tar.gz wget http://cr.yp.to/daemontools/daemontools-0.76.tar.gz # Unpack patches wget http://www.qmail.org/netqmail-1.05.tar.gz tar xfz netqmail-1.05.tar.gz # Compile the easy stuff rm -rf djbdns-1.05 tar xfz djbdns-1.05.tar.gz ( cd djbdns-1.05; patch < ../netqmail-1.05/other-patches/daemontools-0.76.errno.patch; ) ( cd djbdns-1.05; make; ) rm -rf ucspi-tcp-0.88 tar xfz ucspi-tcp-0.88.tar.gz patch -p0 < netqmail-1.05/other-patches/ucspi-tcp-0.88.errno.patch ( cd ucspi-tcp-0.88; make; ) # Install the easy stuff ( cd djbdns-1.05; make setup check; ) ( cd ucspi-tcp-0.88; make setup check; ) # Now compile and install daemontools. # As this is run from /sbin/init this must live in root / HERE="`pwd`" mkdir -p /package chmod 1755 /package cd /package rm -rf admin/daemontools-0.76 tar xfz "$HERE"/daemontools-0.76.tar.gz ( cd admin; patch -p0 <"$HERE"/netqmail-1.05/other-patches/daemontools-0.76.errno.patch; ) cd admin/daemontools-0.76 package/install # Restart init to let init execute svscanboot init q # Add the resolver groupadd dnscache useradd -g dnscache dnscache useradd -g dnscache dnslog /usr/local/bin/dnscache-conf dnscache dnslog /var/dnscache ln -s /var/dnscache /service svc -u /service/dnscache # Fix the nameservers to point to current ICANN structure # This assumes you have dig installed { echo "nameserver 127.0.0.1" cat /etc/resolv.conf } >/etc/resolv.conf.new mv --backup=t /etc/resolv.conf.new /etc/resolv.conf # Patch in the current list of root servers for a in a b c d e f g h i j k l m do dig +short $a.root-servers.net. done > /var/dnscache/root/servers/\@ svc -d /service/dnscache svc -u /service/dnscache
Do you like this article? Share It!
Archives
- November 2019
- October 2019
- August 2019
- April 2019
- February 2017
- September 2016
- June 2016
- May 2016
- September 2015
- August 2015
- June 2015
- April 2015
- December 2014
- October 2014
- September 2014
- July 2014
- June 2014
- April 2014
- October 2013
- July 2013
- May 2013
- April 2013
- March 2013
- January 2013
- December 2012
- October 2012
- August 2012
- July 2012
- June 2012
- May 2012
- April 2012
- March 2012
- December 2011
- November 2011
- October 2011
- September 2011
- July 2011
- May 2011
- April 2011
- March 2011
- February 2011
- January 2011
- December 2010
- November 2010
- October 2010
- September 2010
- August 2010
- July 2010
- June 2010
- May 2010
- April 2010
- March 2010
- February 2010
- January 2010
- December 2009
- November 2009
- October 2009
- May 2009
- April 2009
- March 2009
- February 2009
- January 2009
- December 2008
- November 2008
- October 2008
- September 2008
Categories
- Apple
- Arcade Machines
- Badges
- BMW
- China Related
- Cool Hunting
- Exploits
- Firmware
- Food
- General Talk
- government
- IP Cam
- iPhone
- Lasers
- legislation
- MODx
- MySQL
- notice
- qmail
- requirements
- Reviews
- Service Issues
- Tao Bao
- Technical Mumbo Jumbo
- Things that will get me censored
- Travel
- Uncategorized
- Useful Info
Tags
adsl
Apache
Apple
arm7
china
china telecom
Chinese Spyware Removal Howto
coffee
cool
debian
dns
Email
exploit
fail2ban
firmware
foscam
Google
government
hacking
how to
howto
icp
ipcam
JAMMA
Kitto
licence
microsoft
nc745
nuvoton
outage
problem
rbl
Reverse Engineering
security
shanghai
south africa
spam
taobao
Thoughts
Time Machine
Tuning
uclinux
video
wifi
wordpress
