doc/arm/man.named.html

	man.named.html revision fdd80e9a55c70b36a3bf3e409b86897301c44ff8
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<!--
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync - Copyright (C) 2004-2010 Internet Systems Consortium, Inc. ("ISC")
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync - Copyright (C) 2000-2003 Internet Software Consortium.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync -
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync - Permission to use, copy, modify, and/or distribute this software for any
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync - purpose with or without fee is hereby granted, provided that the above
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync - copyright notice and this permission notice appear in all copies.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync -
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync - THE SOFTWARE IS PROVIDED "AS IS" AND ISC DISCLAIMS ALL WARRANTIES WITH
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync - REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync - AND FITNESS. IN NO EVENT SHALL ISC BE LIABLE FOR ANY SPECIAL, DIRECT,
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync - INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync - LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync - OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync - PERFORMANCE OF THIS SOFTWARE.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync-->
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<!-- $Id: man.named.html,v 1.159 2010/01/08 01:14:07 tbox Exp $ -->
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<html>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<head>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<title>named</title>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<meta name="generator" content="DocBook XSL Stylesheets V1.71.1">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<link rel="start" href="Bv9ARM.html" title="BIND 9 Administrator Reference Manual">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<link rel="up" href="Bv9ARM.ch10.html" title="Manual pages">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<link rel="prev" href="man.named-checkzone.html" title="named-checkzone">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<link rel="next" href="man.named-journalprint.html" title="named-journalprint">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</head>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<body bgcolor="white" text="black" link="#0000FF" vlink="#840084" alink="#0000FF">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<div class="navheader">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<table width="100%" summary="Navigation header">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<tr><th colspan="3" align="center"><span class="application">named</span></th></tr>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<tr>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<td width="20%" align="left">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<a accesskey="p" href="man.named-checkzone.html">Prev</a>�</td>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<th width="60%" align="center">Manual pages</th>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<td width="20%" align="right">�<a accesskey="n" href="man.named-journalprint.html">Next</a>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</td>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</tr>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</table>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<hr>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</div>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<div class="refentry" lang="en">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<a name="man.named"></a><div class="titlepage"></div>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<div class="refnamediv">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<h2>Name</h2>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<p><span class="application">named</span> &#8212; Internet domain name server</p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</div>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<div class="refsynopsisdiv">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<h2>Synopsis</h2>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<div class="cmdsynopsis"><p><code class="command">named</code>  [<code class="option">-4</code>] [<code class="option">-6</code>] [<code class="option">-c <em class="replaceable"><code>config-file</code></em></code>] [<code class="option">-d <em class="replaceable"><code>debug-level</code></em></code>] [<code class="option">-E <em class="replaceable"><code>engine-name</code></em></code>] [<code class="option">-f</code>] [<code class="option">-g</code>] [<code class="option">-m <em class="replaceable"><code>flag</code></em></code>] [<code class="option">-n <em class="replaceable"><code>#cpus</code></em></code>] [<code class="option">-p <em class="replaceable"><code>port</code></em></code>] [<code class="option">-s</code>] [<code class="option">-S <em class="replaceable"><code>#max-socks</code></em></code>] [<code class="option">-t <em class="replaceable"><code>directory</code></em></code>] [<code class="option">-u <em class="replaceable"><code>user</code></em></code>] [<code class="option">-v</code>] [<code class="option">-V</code>] [<code class="option">-x <em class="replaceable"><code>cache-file</code></em></code>]</p></div>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</div>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<div class="refsect1" lang="en">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<a name="id2614065"></a><h2>DESCRIPTION</h2>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<p><span><strong class="command">named</strong></span>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      is a Domain Name System (DNS) server,
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      part of the BIND 9 distribution from ISC.  For more
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      information on the DNS, see RFCs 1033, 1034, and 1035.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync    </p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      When invoked without arguments, <span><strong class="command">named</strong></span>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      will
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      read the default configuration file
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      <code class="filename">/etc/named.conf</code>, read any initial
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      data, and listen for queries.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync    </p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</div>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<div class="refsect1" lang="en">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<a name="id2614096"></a><h2>OPTIONS</h2>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<div class="variablelist"><dl>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dt><span class="term">-4</span></dt>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dd><p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            Use IPv4 only even if the host machine is capable of IPv6.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            <code class="option">-4</code> and <code class="option">-6</code> are mutually
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            exclusive.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync          </p></dd>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dt><span class="term">-6</span></dt>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dd><p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            Use IPv6 only even if the host machine is capable of IPv4.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            <code class="option">-4</code> and <code class="option">-6</code> are mutually
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            exclusive.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync          </p></dd>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dt><span class="term">-c <em class="replaceable"><code>config-file</code></em></span></dt>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dd><p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            Use <em class="replaceable"><code>config-file</code></em> as the
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            configuration file instead of the default,
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            <code class="filename">/etc/named.conf</code>.  To
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            ensure that reloading the configuration file continues
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            to work after the server has changed its working
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            directory due to to a possible
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            <code class="option">directory</code> option in the configuration
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            file, <em class="replaceable"><code>config-file</code></em> should be
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            an absolute pathname.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync          </p></dd>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dt><span class="term">-d <em class="replaceable"><code>debug-level</code></em></span></dt>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dd><p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            Set the daemon's debug level to <em class="replaceable"><code>debug-level</code></em>.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            Debugging traces from <span><strong class="command">named</strong></span> become
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            more verbose as the debug level increases.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync          </p></dd>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dt><span class="term">-E <em class="replaceable"><code>engine-name</code></em></span></dt>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dd><p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            Use a crypto hardware (OpenSSL engine) for the crypto operations
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            it supports, for instance re-signing with private keys from
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            a secure key store. When compiled with PKCS#11 support
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            <em class="replaceable"><code>engine-name</code></em>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            defaults to pkcs11, the empty name resets it to no engine.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync          </p></dd>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dt><span class="term">-f</span></dt>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dd><p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            Run the server in the foreground (i.e. do not daemonize).
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync          </p></dd>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dt><span class="term">-g</span></dt>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dd><p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            Run the server in the foreground and force all logging
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            to <code class="filename">stderr</code>.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync          </p></dd>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dt><span class="term">-m <em class="replaceable"><code>flag</code></em></span></dt>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dd><p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync        Turn on memory usage debugging flags.  Possible flags are
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync        <em class="replaceable"><code>usage</code></em>,
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync        <em class="replaceable"><code>trace</code></em>,
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync        <em class="replaceable"><code>record</code></em>,
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync        <em class="replaceable"><code>size</code></em>, and
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync        <em class="replaceable"><code>mctx</code></em>.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync        These correspond to the ISC_MEM_DEBUGXXXX flags described in
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync        <code class="filename">&lt;isc/mem.h&gt;</code>.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync          </p></dd>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dt><span class="term">-n <em class="replaceable"><code>#cpus</code></em></span></dt>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dd><p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            Create <em class="replaceable"><code>#cpus</code></em> worker threads
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            to take advantage of multiple CPUs.  If not specified,
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            <span><strong class="command">named</strong></span> will try to determine the
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            number of CPUs present and create one thread per CPU.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            If it is unable to determine the number of CPUs, a
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            single worker thread will be created.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync          </p></dd>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dt><span class="term">-p <em class="replaceable"><code>port</code></em></span></dt>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dd><p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            Listen for queries on port <em class="replaceable"><code>port</code></em>.  If not
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            specified, the default is port 53.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync          </p></dd>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dt><span class="term">-s</span></dt>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dd>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            Write memory usage statistics to <code class="filename">stdout</code> on exit.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync          </p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<div class="note" style="margin-left: 0.5in; margin-right: 0.5in;">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<h3 class="title">Note</h3>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              This option is mainly of interest to BIND 9 developers
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              and may be removed or changed in a future release.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            </p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</div>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</dd>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dt><span class="term">-S <em class="replaceable"><code>#max-socks</code></em></span></dt>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dd>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync        Allow <span><strong class="command">named</strong></span> to use up to
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync        <em class="replaceable"><code>#max-socks</code></em> sockets.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      </p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<div class="warning" style="margin-left: 0.5in; margin-right: 0.5in;">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<h3 class="title">Warning</h3>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              This option should be unnecessary for the vast majority
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              of users.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync          The use of this option could even be harmful because the
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              specified value may exceed the limitation of the
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              underlying system API.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync          It is therefore set only when the default configuration
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              causes exhaustion of file descriptors and the
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              operational environment is known to support the
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              specified number of sockets.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync          Note also that the actual maximum number is normally a little
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              fewer than the specified value because
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync          <span><strong class="command">named</strong></span> reserves some file descriptors
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync          for its internal use.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            </p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</div>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</dd>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dt><span class="term">-t <em class="replaceable"><code>directory</code></em></span></dt>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dd>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<p>Chroot
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync        to <em class="replaceable"><code>directory</code></em> after
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            processing the command line arguments, but before
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            reading the configuration file.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync          </p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<div class="warning" style="margin-left: 0.5in; margin-right: 0.5in;">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<h3 class="title">Warning</h3>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              This option should be used in conjunction with the
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              <code class="option">-u</code> option, as chrooting a process
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              running as root doesn't enhance security on most
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              systems; the way <code class="function">chroot(2)</code> is
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              defined allows a process with root privileges to
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              escape a chroot jail.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            </p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</div>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</dd>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dt><span class="term">-u <em class="replaceable"><code>user</code></em></span></dt>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dd>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<p>Setuid
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync        to <em class="replaceable"><code>user</code></em> after completing
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            privileged operations, such as creating sockets that
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            listen on privileged ports.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync          </p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<div class="note" style="margin-left: 0.5in; margin-right: 0.5in;">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<h3 class="title">Note</h3>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              On Linux, <span><strong class="command">named</strong></span> uses the kernel's
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync                    capability mechanism to drop all root privileges
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              except the ability to <code class="function">bind(2)</code> to
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              a
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              privileged port and set process resource limits.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              Unfortunately, this means that the <code class="option">-u</code>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              option only works when <span><strong class="command">named</strong></span> is
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              run
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              on kernel 2.2.18 or later, or kernel 2.3.99-pre3 or
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              later, since previous kernels did not allow privileges
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              to be retained after <code class="function">setuid(2)</code>.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            </p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</div>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</dd>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dt><span class="term">-v</span></dt>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dd><p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            Report the version number and exit.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync          </p></dd>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dt><span class="term">-V</span></dt>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dd><p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            Report the version number and build options, and exit.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync          </p></dd>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dt><span class="term">-x <em class="replaceable"><code>cache-file</code></em></span></dt>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dd>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            Load data from <em class="replaceable"><code>cache-file</code></em> into the
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            cache of the default view.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync          </p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<div class="warning" style="margin-left: 0.5in; margin-right: 0.5in;">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<h3 class="title">Warning</h3>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              This option must not be used.  It is only of interest
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              to BIND 9 developers and may be removed or changed in a
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync              future release.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            </p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</div>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</dd>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</dl></div>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</div>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<div class="refsect1" lang="en">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<a name="id2629804"></a><h2>SIGNALS</h2>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      In routine operation, signals should not be used to control
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      the nameserver; <span><strong class="command">rndc</strong></span> should be used
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      instead.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync    </p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<div class="variablelist"><dl>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dt><span class="term">SIGHUP</span></dt>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dd><p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            Force a reload of the server.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync          </p></dd>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dt><span class="term">SIGINT, SIGTERM</span></dt>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dd><p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            Shut down the server.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync          </p></dd>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</dl></div>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      The result of sending any other signals to the server is undefined.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync    </p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</div>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<div class="refsect1" lang="en">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<a name="id2629923"></a><h2>CONFIGURATION</h2>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      The <span><strong class="command">named</strong></span> configuration file is too complex
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      to describe in detail here.  A complete description is provided
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      in the
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      <em class="citetitle">BIND 9 Administrator Reference Manual</em>.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync    </p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      <span><strong class="command">named</strong></span> inherits the <code class="function">umask</code>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      (file creation mode mask) from the parent process. If files
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      created by <span><strong class="command">named</strong></span>, such as journal files,
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      need to have custom permissions, the <code class="function">umask</code>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      should be set explicitly in the script used to start the
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      <span><strong class="command">named</strong></span> process.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync    </p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</div>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<div class="refsect1" lang="en">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<a name="id2629972"></a><h2>FILES</h2>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<div class="variablelist"><dl>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dt><span class="term"><code class="filename">/etc/named.conf</code></span></dt>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dd><p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            The default configuration file.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync          </p></dd>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dt><span class="term"><code class="filename">/var/run/named/named.pid</code></span></dt>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<dd><p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync            The default process-id file.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync          </p></dd>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</dl></div>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</div>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<div class="refsect1" lang="en">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<a name="id2669542"></a><h2>SEE ALSO</h2>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<p><em class="citetitle">RFC 1033</em>,
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      <em class="citetitle">RFC 1034</em>,
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      <em class="citetitle">RFC 1035</em>,
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      <span class="citerefentry"><span class="refentrytitle">named-checkconf</span>(8)</span>,
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      <span class="citerefentry"><span class="refentrytitle">named-checkzone</span>(8)</span>,
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      <span class="citerefentry"><span class="refentrytitle">rndc</span>(8)</span>,
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      <span class="citerefentry"><span class="refentrytitle">lwresd</span>(8)</span>,
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      <span class="citerefentry"><span class="refentrytitle">named.conf</span>(5)</span>,
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync      <em class="citetitle">BIND 9 Administrator Reference Manual</em>.
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync    </p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</div>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<div class="refsect1" lang="en">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<a name="id2669612"></a><h2>AUTHOR</h2>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<p><span class="corpauthor">Internet Systems Consortium</span>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync    </p>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</div>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</div>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<div class="navfooter">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<hr>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<table width="100%" summary="Navigation footer">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<tr>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<td width="40%" align="left">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<a accesskey="p" href="man.named-checkzone.html">Prev</a>�</td>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<td width="20%" align="center"><a accesskey="u" href="Bv9ARM.ch10.html">Up</a></td>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<td width="40%" align="right">�<a accesskey="n" href="man.named-journalprint.html">Next</a>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</td>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</tr>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<tr>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<td width="40%" align="left" valign="top">
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<span class="application">named-checkzone</span>�</td>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<td width="20%" align="center"><a accesskey="h" href="Bv9ARM.html">Home</a></td>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync<td width="40%" align="right" valign="top">�<span class="application">named-journalprint</span>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</td>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</tr>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</table>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</div>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</body>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync</html>
4fd606d1f5abe38e1f42c38de1d2e895166bd0f4vboxsync