controls.html revision 15a44745412679c30a6d022733925af70a38b715
203N/A<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
203N/A<!--
203N/A - Copyright (C) 1999, 2000 Internet Software Consortium.
203N/A -
203N/A - Permission to use, copy, modify, and distribute this software for any
203N/A - purpose with or without fee is hereby granted, provided that the above
203N/A - copyright notice and this permission notice appear in all copies.
203N/A -
203N/A - THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM
203N/A - DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL
203N/A - IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL
203N/A - INTERNET SOFTWARE CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT,
203N/A - INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING
203N/A - FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT,
203N/A - NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION
203N/A - WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
203N/A-->
203N/A
203N/A<!-- $Id: controls.html,v 1.4 2000/07/27 09:42:13 tale Exp $ -->
203N/A
203N/A<HTML>
203N/A<HEAD>
203N/A <TITLE>BIND controls Statement</TITLE>
203N/A</HEAD>
203N/A
203N/A<BODY>
618N/A<H2>BIND Configuration File Guide--<CODE>controls</CODE> Statement</H2>
203N/A
203N/A<HR>
203N/A
203N/A<A NAME="Syntax"><H3>Syntax</H3></A>
203N/A
278N/A<PRE>
278N/Acontrols {
203N/A [ inet <VAR><A HREF="docdef.html">ip_addr</A></VAR>
203N/A port <VAR><A HREF="docdef.html">ip_port</A></VAR>
203N/A allow { <VAR><A HREF="address_list.html">address_match_list</A></VAR>; }; ]
203N/A [ unix <VAR><A HREF="docdef.html">path_name</A></VAR>
203N/A perm <VAR><A HREF="docdef.html">number</A></VAR>
203N/A owner <VAR><A HREF="docdef.html">number</A></VAR>
206N/A group <VAR><A HREF="docdef.html">number</A></VAR>; ]
203N/A};
203N/A</PRE>
203N/A
203N/A<HR>
203N/A
203N/A<A NAME="Usage"><H3>Definition and Usage</H3></A>
203N/A
203N/A<P>The <CODE>controls</CODE statement declares control channels
203N/Ato be used by system
206N/Aadministrators to affect the operation of the local name server. These
206N/Acontrol channels are used by the <CODE>ndc</CODE> utility to send commands
203N/Ato and retrieve non-DNS results from a name server.</P>
203N/A
203N/A<P>A <CODE>unix</CODE> control channel is a FIFO in the file system,
203N/Aand access to it is
203N/Acontrolled by normal file system permissions.
203N/AIt is created by <CODE>named</CODE> with the specified file mode bits (see
203N/Athe <CODE>chmod</CODE>(1) manual page), user and group owner.
203N/ANote that, unlike <CODE>chmod</CODE>, the mode bits specified for
203N/A<CODE>perm</CODE> will normally have a leading 0 so the number
203N/Ais interpreted as octal. Also note that the user and group
203N/Aownership specified as <CODE>owner</CODE> and <CODE>group</CODE>
203N/Amust be given as numbers, not names.
203N/AIt is recommended that the
267N/Apermissions be restricted to administrative personnel only, or else any
203N/Auser on the system might be able to manage the local name server.</P>
203N/A
203N/A<P>An <CODE>inet</CODE> control channel is a TCP/IP socket accessible
203N/Ato the Internet, created at the specified <VAR>ip_port</VAR> on the
206N/Aspecified <VAR>ip_addr</VAR>.
203N/AModern <VAR>telnet</VAR> clients are capable of speaking directly to these
203N/Asockets, and the control protocol is ARPAnet-style text. It is recommended
203N/Athat 127.0.0.1 be the only <VAR>ip_addr</VAR> used, and this only if you
203N/Atrust all non-privileged users on the local host to manage your name
203N/Aserver.</P>
203N/A