[rbldnsd] Newbie questions

Skull skull at skullkrusher.net
Mon May 16 13:11:11 MSD 2011 

On 5/16/11 10:11 AM, Phoenix Kiula wrote:

> Thanks for this.
> 
> But this is far from simple and step by step. It's probably fantastic for geeks.
> 
> It is also not for Linux with Cpanel, so paths etc are all probably different.

Paths can surely be different, but we can't know where your linux distro
is going to put things: you should rely on other sources for these aspects.


> 1. How do I install rbldnsd.

If your linux distro comes with a package repository, you can start from
there: if there is a pre-packaged install of rbldnsd, just install it.
Otherwise, you're expected to compile it from source code. This means
you need gcc, make and all the other things/libraries needed to compile
stuff.

If you need help on this aspects, refer to documentation, fora, etc
specific for your linux distro (having cPanel installed shouldn't change
anything on these aspects).


> 2. Zone file with multi.surbl.org -- this part I get.
> 3. How to make sure that BIND does its stuff, but does not interfere with this?
> 4. Will a simple "nameserver 127.0.0.1" not be enough for BIND to
> locally cache lookups?

BIND has to be instructed to know which zone(s) are delegated to
rbldnsd, and where rbldnsd is listening. This is needed because you're
using a DNS zone outside the "official" DNS delegation tree.

This is what you're obtaining putting in BIND's config file the stance

zone "multi.surbl.org" IN {
        type forward;
        forward first;
        forwarders {
        127.0.0.1 port 750;
        };
};


It means: instead of looking up "multi.surbl.org" through the DNS
delegation tree, just ask (forward queries to) 127.0.0.1 on port 750.
If it does not answer, ask the usual way (this is the meaning of
"forward first").
Obviously, if your BIND is controlled by cPanel, you need to add this
configuration through it or add the config manually in a way compatible
with cPanel's way of doing things. Refer to cPanel's docs about this.

If all this is completely obscure to you, you'll probably want to hire
somebody if you really need to run rbldnsd in your environment, or just
start studying to be able to do it on your own.

-- 
Paranoia is a disease unto itself. And may I add: the person standing
next to you may not be who they appear to be, so take precaution.
-----------------------------------------------------------------------------
http://bofhskull.wordpress.com/

More information about the rbldnsd mailing list