Comment 15 for bug 227344

severity 513113 wishlist
retitle 513113 Compile Bind9 with support for DLZ backends
forcemerge 273440 513113
thank you

Stefan,

Bind9 in Debian is not compiled with support for DLZ backends.
Fact that Bind9 is linked with ldap libraries doesn't mean it
supports DLZ LDAP backend.

Ondrej.

On Mon, Jan 26, 2009 at 4:46 PM, stka <email address hidden> wrote:
> Package: bind9
> Version: 1:9.5.0.dfsg.P2-5.1
> Severity: normal
>
>
>
> -- System Information:
> Debian Release: 5.0
> APT prefers testing
> APT policy: (500, 'testing')
> Architecture: i386 (i686)
>
> Kernel: Linux 2.6.26-1-686 (SMP w/1 CPU core)
> Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8)
> Shell: /bin/sh linked to /bin/bash
>
> Versions of packages bind9 depends on:
> ii adduser 3.110 add and remove users and groups
> ii bind9utils 1:9.5.0.dfsg.P2-5.1 Utilities for BIND
> ii debconf [debconf-2.0 1.5.24 Debian configuration management sy
> ii libbind9-40 1:9.5.0.dfsg.P2-5.1 BIND9 Shared Library used by BIND
> ii libc6 2.7-18 GNU C Library: Shared libraries
> ii libcap2 2.11-2 support for getting/setting POSIX.
> ii libdb4.6 4.6.21-11 Berkeley v4.6 Database Libraries [
> ii libdns43 1:9.5.0.dfsg.P2-5.1 DNS Shared Library used by BIND
> ii libisc44 1:9.5.0.dfsg.P2-5.1 ISC Shared Library used by BIND
> ii libisccc40 1:9.5.0.dfsg.P2-5.1 Command Channel Library used by BI
> ii libisccfg40 1:9.5.0.dfsg.P2-5.1 Config File Handling Library used
> ii libkrb53 1.6.dfsg.4~beta1-5 MIT Kerberos runtime libraries
> ii libldap-2.4-2 2.4.11-1 OpenLDAP libraries
> ii liblwres40 1:9.5.0.dfsg.P2-5.1 Lightweight Resolver Library used
> ii libssl0.9.8 0.9.8g-15 SSL shared libraries
> ii libxml2 2.6.32.dfsg-5 GNOME XML library
> ii lsb-base 3.2-20 Linux Standard Base 3.2 init scrip
> ii net-tools 1.60-22 The NET-3 networking toolkit
> ii netbase 4.34 Basic TCP/IP networking system
>
> bind9 recommends no packages.
>
> Versions of packages bind9 suggests:
> ii bind9-doc 1:9.5.0.dfsg.P2-5.1 Documentation for BIND
> ii dnsutils 1:9.5.0.dfsg.P2-5.1 Clients provided with BIND
> ii resolvconf 1.42 name server information handler
> pn ufw <none> (no description available)
>
> -- debconf information:
> bind9/different-configuration-file:
> bind9/run-resolvconf: true
> bind9/start-as-user: bind
>
>
> I try to user bind9 together with openLDAP. But everytime I try to start bind9 I get the following error:
> --------------------------------
> Jan 26 16:15:47 ldapserver named[3211]: zone 127.in-addr.arpa/IN: loaded serial 1
> Jan 26 16:15:47 ldapserver named[3211]: unsupported database type 'ldap'
> Jan 26 16:15:47 ldapserver named[3211]: zone 123.168.192.in-addr.arpa/IN: loading zone: creating database: not found
> Jan 26 16:15:47 ldapserver named[3211]: zone 255.in-addr.arpa/IN: loaded serial 1
> Jan 26 16:15:47 ldapserver named[3211]: zone localhost/IN: loaded serial 2
> Jan 26 16:15:47 ldapserver named[3211]: unsupported database type 'ldap'
> Jan 26 16:15:47 ldapserver named[3211]: zone home.stka/IN: loading zone: creating database: not found
> Jan 26 16:15:47 ldapserver named[3211]: running
> --------------------------------
> Here is my named.conf.local:
> --------------------------------
> zone "home.stka" in {
> type master;
> database "ldap ldap://192.168.123.170/ou=home.stka,ou=forward,ou=zone.master,ou=dns,dc=home,dc=stka????!bindname=uid=ldapbindaccount%2cou=dns%2cdc=home%2cdc=stka,!x-bindpw=bind9,x-tls 172800";
> };
>
> zone "123.168.192.in-addr.arpa" in {
> type master;
> database "ldap ldap://192.168.123.170/ou=123.168.192.in-addr.arpa,ou=reverse,ou=zone.master,ou=dns,dc=home,dc=stka????!bindname=uid=ldapbindaccount%2cou=dns%2cdc=home%2cdc=stka,!x-bindpw=bind9,x-tls 172800";
> };
> --------------------------------
> I use this configuration with opensuse and it works. The bind9 is build with libldap as "ldd /usr/sbin/named" shows:
>
> --------------------------------
> ldapserver:~/vorlagen/ldapserver/dns# ldd /usr/sbin/named
> linux-gate.so.1 => (0xb7e9f000)
> liblwres.so.40 => /usr/lib/liblwres.so.40 (0xb7e85000)
> libdns.so.43 => /usr/lib/libdns.so.43 (0xb7d38000)
> libgssapi_krb5.so.2 => /usr/lib/libgssapi_krb5.so.2 (0xb7d0d000)
> libcrypto.so.0.9.8 => /usr/lib/i686/cmov/libcrypto.so.0.9.8 (0xb7bba000)
> libbind9.so.40 => /usr/lib/libbind9.so.40 (0xb7bae000)
> libisccfg.so.40 => /usr/lib/libisccfg.so.40 (0xb7b99000)
> libisccc.so.40 => /usr/lib/libisccc.so.40 (0xb7b90000)
> libisc.so.44 => /usr/lib/libisc.so.44 (0xb7b40000)
> libdb-4.6.so => /usr/lib/libdb-4.6.so (0xb7a0c000)
> libldap_r-2.4.so.2 => /usr/lib/libldap_r-2.4.so.2 (0xb79c9000)
> liblber-2.4.so.2 => /usr/lib/liblber-2.4.so.2 (0xb79bc000)
> libcap.so.2 => /lib/libcap.so.2 (0xb79b8000)
> libnsl.so.1 => /lib/i686/cmov/libnsl.so.1 (0xb799f000)
> libpthread.so.0 => /lib/i686/cmov/libpthread.so.0 (0xb7986000)
> libxml2.so.2 => /usr/lib/libxml2.so.2 (0xb784c000)
> libc.so.6 => /lib/i686/cmov/libc.so.6 (0xb76f1000)
> libkrb5.so.3 => /usr/lib/libkrb5.so.3 (0xb765d000)
> libk5crypto.so.3 => /usr/lib/libk5crypto.so.3 (0xb7639000)
> libcom_err.so.2 => /lib/libcom_err.so.2 (0xb7636000)
> libkrb5support.so.0 => /usr/lib/libkrb5support.so.0 (0xb762d000)
> libdl.so.2 => /lib/i686/cmov/libdl.so.2 (0xb7629000)
> libkeyutils.so.1 => /lib/libkeyutils.so.1 (0xb7626000)
> libresolv.so.2 => /lib/i686/cmov/libresolv.so.2 (0xb7612000)
> libz.so.1 => /usr/lib/libz.so.1 (0xb75fd000)
> libsasl2.so.2 => /usr/lib/libsasl2.so.2 (0xb75e5000)
> libgnutls.so.26 => /usr/lib/libgnutls.so.26 (0xb7548000)
> libattr.so.1 => /lib/libattr.so.1 (0xb7543000)
> /lib/ld-linux.so.2 (0xb7ea0000)
> libm.so.6 => /lib/i686/cmov/libm.so.6 (0xb751d000)
> libtasn1.so.3 => /usr/lib/libtasn1.so.3 (0xb750d000)
> libgpg-error.so.0 => /usr/lib/libgpg-error.so.0 (0xb7508000)
> libgcrypt.so.11 => /usr/lib/libgcrypt.so.11 (0xb74a0000)
> -----------------------------------------
> So I think bind9 should work with LDAP.
>
> --
> Stefan
>
>
>
>

--
Ondřej Surý <email address hidden>