[Samba] Samba errors everyday at 00:00:00
Rowland Penny
rpenny at samba.org
Thu Mar 28 15:16:15 UTC 2024
On Thu, 28 Mar 2024 15:03:28 +0000
Kamal Chikh echioukh via samba <samba at lists.samba.org> wrote:
> Hello Rawland,
>
> I understand what happens every day at 00:00:00. There is a systemd
> timer called "unbound-anchor.timer" that runs once a day a systemd
> service named "unbound-anchor.service". This oneshot type service is
> used to update of the root trust anchor for DNSSEC validation in
> unbound. It execute the following command :
>
> ExecStart=/usr/sbin/unbound-anchor -a /var/lib/unbound/root.key -c
> /etc/unbound/icannbundle.pem -f /etc/resolv.conf -R
>
I have never used it, but from my understanding, unbound is a dns
server, so presumably uses port 53.
In my opinion, you should only run either the dns server built into a
Samba DC or replace that with Bind9, there should be no other dns
server running on a DC.
Rowland
More information about the samba
mailing list