Bug#567879: Please add resolvconf integration

Sun, 31 Jan 2010 15:21:13 -0800 

martin f. krafft wrote:
> Package: unbound
> Severity: wishlist
> Tags: patch
> 
> Signed-off-by: martin f. krafft <madd...@debian.org>
> ---
>  contrib/resolvconf-update-script.sh               |   42 
> +++++++++++++++++++++
>  debian/patches/30_example_conf_resolvconf_include |   14 +++++++
>  debian/patches/series                             |    1 +
>  debian/rules                                      |    2 +
>  debian/unbound.dirs                               |    2 +
>  5 files changed, 61 insertions(+), 0 deletions(-)
>  create mode 100755 contrib/resolvconf-update-script.sh
>  create mode 100644 debian/patches/30_example_conf_resolvconf_include

can you please explain exactly what this does and how it relates to
#562031?

> +# Script to inform unbound about upstream resolvers.

by "upstream resolver" do you mean a recursive nameserver?

> ++# Resolvconf integration
> ++# If you have the resolvconf package installed, you can uncomment the
> ++# following to let unbound forward queries to the DNS resolvers discovered 
> by
> ++# resolvconf (e.g. from DHCP or static entries in /etc/network/interfaces).
> ++# include: "/var/cache/unbound/resolvconf_resolvers.conf"

i'm confused.  unbound is already a full service resolver.  doesn't this
configure unbound to just act like a stub resolver by forwarding all its
queries to another full service resolver?  why not just set that
resolver address in /etc/resolv.conf?

is there some use case that this solves, e.g. something to do with
DNSSEC validation (since there is no DNSSEC support in the glibc stub
resolver) or maybe operation on hostile networks that block / intercept
port 53 traffic?

> diff --git a/debian/rules b/debian/rules
> index ad1025f..f36201c 100755
> --- a/debian/rules
> +++ b/debian/rules
> @@ -26,6 +26,8 @@ install: build
>       dh_installinit --error-handler=true --restart-after-upgrade
>       dh install --after dh_installinit
>       install -m 0644 doc/example.conf debian/unbound/etc/unbound/unbound.conf
> +     install -m 0755 contrib/resolvconf-update-script.sh \
> +             debian/unbount/etc/resolvconf/update.d/unbound

s/unbount/unbound/

-- 
Robert Edmonds
edmo...@debian.org

Attachment: signature.asc
Description: Digital signature

Reply via email to