It ought to be possible to write a front-end to listen on the standard control
channel and only forward (properly-keyed) 'status' requests to the "real" port
that BIND listens to.
>From looking at the RNDC exchange via Wireshark however, you'd have to adapt
>some of BIND's code that does the
I see I can define (using the 'controls' statement) a 'read-only' inet
channel. I suspect I could define a couple of channels on the same
address if I put them on different ports. Is there a way to define a
single 'read-write' channel, and then limit certain keys to read-only
access on it?
2 matches
Mail list logo