Date: Sat, 30 Jun 2018 11:33:19 +0200 From: Dimitry Andric <dim@FreeBSD.org> To: Larry Rosenman <ler@FreeBSD.org> Cc: freebsd-current@FreeBSD.org Subject: Re: DNSSEC/Log Spam for partially DNSSEC domain Message-ID: <9A9BEA31-1677-4F5D-A987-40B0E50EE9BF@FreeBSD.org> In-Reply-To: <20180630020321.6mpusxvbn7fpy64y@ler-imac.local> References: <20180630020321.6mpusxvbn7fpy64y@ler-imac.local>
next in thread | previous in thread | raw e-mail | index | archive | help
--Apple-Mail=_F1DB7737-B20D-4030-B13A-9EE8AD20DFAC Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=us-ascii On 30 Jun 2018, at 04:03, Larry Rosenman <ler@FreeBSD.org> wrote: >=20 > I'm running Exim, with DNSSEC enabled, and my zone (lerctr.org) is > DNSSEC signed, but my dyn.lerctr.org subdomain is NOT DNSSEC signed = due > to HE.net don't support DNSSEC. >=20 > I get a ton of: > Jun 29 20:12:53 thebighonker exim[37649]: gethostby*.gethostanswer: = asked for "borg.lerctr.org IN AAAA", got type "RRSIG" > Jun 29 20:12:53 thebighonker exim[37649]: gethostby*.gethostanswer: = asked for "borg.lerctr.org IN A", got type "RRSIG" >=20 > in my logs, which comes from libc: > /usr/src/lib/libc/net/getaddrinfo.c: > 2092 #ifdef DEBUG > 2093 if (type !=3D T_KEY && type !=3D T_SIG = && > 2094 type !=3D ns_t_dname) > 2095 syslog(LOG_NOTICE|LOG_AUTH, > 2096 "gethostby*.getanswer: asked for \"%s %s %s\", = got type \"%s\"", > 2097 qname, p_class(C_IN), = p_type(qtype), > 2098 p_type(type)); > 2099 #endif >=20 > Is there an easy way to make this quieter? I see this code is only included if DEBUG is defined. Maybe undefine DEBUG, for this particular file? Or hack it so it has #undef DEBUG at the top? That said, I'm not sure if debug messages like this should be enabled by default, and impossible to squelch without recompiling libc. So maybe we should #if 0 it, instead. -Dimitry --Apple-Mail=_F1DB7737-B20D-4030-B13A-9EE8AD20DFAC Content-Transfer-Encoding: 7bit Content-Disposition: attachment; filename=signature.asc Content-Type: application/pgp-signature; name=signature.asc Content-Description: Message signed with OpenPGP -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.2 iF0EARECAB0WIQR6tGLSzjX8bUI5T82wXqMKLiCWowUCWzdOXwAKCRCwXqMKLiCW owNVAJ9+KRFGTEUzXoqWjs02s/T6BUFJGACePKTGB+GRDQQVw8CDQUm30msidgw= =iJsz -----END PGP SIGNATURE----- --Apple-Mail=_F1DB7737-B20D-4030-B13A-9EE8AD20DFAC--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?9A9BEA31-1677-4F5D-A987-40B0E50EE9BF>