[PATCH] Create a 'binddns dir' for files used by the bind_dlz module and named
Andreas Schneider
asn at samba.org
Tue Sep 5 10:31:20 UTC 2017
On Monday, 4 September 2017 21:22:39 CEST Andrew Bartlett wrote:
> Andreas,
Andrew,
> I know this won't make you very happy, but I think this is a 4.8 patch
> at this point. You can of course patch Fedora packages, but I fear
> further dragons, given the fight it has given so far, and while parts
> of the DLZ mode are tested (thankfully!) the whole integration is not
> verified in make test.
would you accept it if Marc and I would do manual testing and fix remaining
issues.
This means upgrading from 4.6 to 4.7 with my patchset and check if it works
seemlessly.
Switching backends etc.
I do not feel very happy with the current code and giving named broad access
to keytab and AD partitions.
Also when switching from bind_dlz to the internal DNS we should remove files
which give the named group full access to AD.
> Now that we have cwrap, that could and should change.
Open selftest/wscript and uncomment line 235 and 236 and comment out line 239,
then run 'make test'.
This would use the internal DNS server instead of faking DNS.
Andreas
--
Andreas Schneider GPG-ID: CC014E3D
Samba Team asn at samba.org
www.samba.org
More information about the samba-technical
mailing list