Date: Fri, 30 Sep 2016 15:38:34 +0100 From: Matthew Seaman <matthew@FreeBSD.org> To: Tim Daneliuk <tundra@tundraware.com>, freebsd-questions@freebsd.org Subject: Re: [Mildly OT] Userland Control Of getbostbyname() Message-ID: <bcc36073-7125-1d83-3878-1811e16c4367@FreeBSD.org> In-Reply-To: <089e1154-317f-6462-095b-35403ba944b0@tundraware.com> References: <a0681443-0282-48ac-5884-6d1f3868787a@tundraware.com> <12a5cae8-8aa1-68a1-5130-a6813c07c972@freebsd.org> <089e1154-317f-6462-095b-35403ba944b0@tundraware.com>
next in thread | previous in thread | raw e-mail | index | archive | help
This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --BpuR2CbcLDKrDmins2scXDBwkaT7FNHGu Content-Type: multipart/mixed; boundary="S5Tv0TacGRk5EmE9MhjmMoFN6TCe3WEGR"; protected-headers="v1" From: Matthew Seaman <matthew@FreeBSD.org> To: Tim Daneliuk <tundra@tundraware.com>, freebsd-questions@freebsd.org Message-ID: <bcc36073-7125-1d83-3878-1811e16c4367@FreeBSD.org> Subject: Re: [Mildly OT] Userland Control Of getbostbyname() References: <a0681443-0282-48ac-5884-6d1f3868787a@tundraware.com> <12a5cae8-8aa1-68a1-5130-a6813c07c972@freebsd.org> <089e1154-317f-6462-095b-35403ba944b0@tundraware.com> In-Reply-To: <089e1154-317f-6462-095b-35403ba944b0@tundraware.com> --S5Tv0TacGRk5EmE9MhjmMoFN6TCe3WEGR Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable On 2016/09/30 15:20, Tim Daneliuk wrote: > Thanks Matthew, that's kind of what I figured. The fundamental require= ment > for my use case is that all the config changes be do-able without root > or sudo access. It's sounds like this is not possible short of - as yo= u > point out - writing custom query code. This breaks the other half of > my use case - existing code should just run and use the newly selected > resolver. Sigh ... You generally can't change the configuration of a server at this level without root level access. Even if you had write access to /var/unbound/forward.conf, you'ld need also need root level access in order to signal the unbound process to re-read its config. This is a job for sudo(8) -- if not, then you're going to have to explain to your management that whatever they want investigated will take very much longer than it needs to, since you'll be spending a large amount of time waiting for some sysadmin to make these changes on your behalf. Cheers, Matthew --S5Tv0TacGRk5EmE9MhjmMoFN6TCe3WEGR-- --BpuR2CbcLDKrDmins2scXDBwkaT7FNHGu Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Comment: GPGTools - https://gpgtools.org iQJ8BAEBCgBmBQJX7njwXxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQxOUYxNTRFQ0JGMTEyRTUwNTQ0RTNGMzAw MDUxM0YxMEUwQTlFNEU3AAoJEABRPxDgqeTnOA0P/1iXYhxtXu46fsvBtBTmfBtG 5QCJVLPNRLF8kbwtgl4WasAVJIM2COj0Xd6xxJJNq0o2gT8owtHPpcp9NbuRX345 ANAhNt+s0JlaxhNzXJHk4HXdOoNh1yE18LcO7CqtOFM16zed/iVWec8GDWhCigGb XWuTlEdF2sqOc/w4hpyqeZIujczqnBv2CgxD3AnKVfLr3He0e8TO+pkuo3f8mplG +Lw71lEQFv/u6SLVITMymEl0z3H39PGIr4bdkElX/qJTsFsfyNMIsQW1w7me7rvC HFWPprDbyCDK88X3Sztoemz2ldgC8hjBhpTQG+sl46czPqPvi3wPrNbmLJtgdBG4 tNpfHb3Sk+u6kgl8mAB1fOpFABfhbY/rnEjCAypU6GU/vRZTh1qG6r63xZDvgD1g rXVRJtyzH/MPdRJfbgOYLS4h3Ty6bsVDjesrxdJSFgAhq8FaBQXGjXZ4NLc6aLl2 UrVZmDd3NgNbs0ElTMdlvkWCSgSphHGKPXslIbiXn8JU31SN7tryo/iOBBwN0lbp Q57w05NNma2pK13WerakaPnF3T6E+MCqfXl1wHzlPnQuyxGyQ5IOLyoYJMLYfcq5 DlYZ5D1i5Cnjs3UGkmBDqc4OctxTrikSUBFgiL+2eqpL11fVdfKYdQyUy+5qv/0h 5Uk1WwoQNamhqPG47wDX =Kls7 -----END PGP SIGNATURE----- --BpuR2CbcLDKrDmins2scXDBwkaT7FNHGu--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bcc36073-7125-1d83-3878-1811e16c4367>