From owner-freebsd-ports@freebsd.org Sun May 3 13:32:44 2020 Return-Path: Delivered-To: freebsd-ports@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 13A932DDD40 for ; Sun, 3 May 2020 13:32:44 +0000 (UTC) (envelope-from cmt@burggraben.net) Received: from smtp.burggraben.net (smtp.burggraben.net [IPv6:2a01:4f8:140:510a::3]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "smtp.burggraben.net", Issuer "Christoph Moench-Tegeder" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 49FRkL6Fm2z3Cmm for ; Sun, 3 May 2020 13:32:42 +0000 (UTC) (envelope-from cmt@burggraben.net) Received: from elch.exwg.net (elch.exwg.net [IPv6:2001:470:7120:1:127b:44ff:fe4f:148d]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "elch.exwg.net", Issuer "Christoph Moench-Tegeder" (not verified)) by smtp.burggraben.net (Postfix) with ESMTPS id 3DAD6C0030D for ; Sun, 3 May 2020 15:32:40 +0200 (CEST) Received: by elch.exwg.net (Postfix, from userid 1000) id DAE83139893; Sun, 3 May 2020 15:32:39 +0200 (CEST) Date: Sun, 3 May 2020 15:32:39 +0200 From: Christoph Moench-Tegeder To: freebsd-ports@freebsd.org Subject: Re: Bind 9.16 port error still lingers Message-ID: <20200503133239.GA14877@elch.exwg.net> References: <20200502140501.GA16385@doctor.nl2k.ab.ca> <20200502143210.GA4453@elch.exwg.net> <20200502151636.GA22397@doctor.nl2k.ab.ca> <20200502165318.GB4453@elch.exwg.net> <20200502172907.GA59662@doctor.nl2k.ab.ca> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline In-Reply-To: <20200502172907.GA59662@doctor.nl2k.ab.ca> User-Agent: Mutt/1.13.5 (2020-03-28) X-Rspamd-Queue-Id: 49FRkL6Fm2z3Cmm X-Spamd-Bar: ----- Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of cmt@burggraben.net designates 2a01:4f8:140:510a::3 as permitted sender) smtp.mailfrom=cmt@burggraben.net X-Spamd-Result: default: False [-5.25 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000,0]; FROM_HAS_DN(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2a01:4f8:140:510a::3]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; TO_DN_NONE(0.00)[]; PREVIOUSLY_DELIVERED(0.00)[freebsd-ports@freebsd.org]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-1.00)[-1.000,0]; DMARC_NA(0.00)[burggraben.net]; RCVD_IN_DNSWL_MED(-0.20)[3.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.a.0.1.5.0.4.1.0.8.f.4.0.1.0.a.2.list.dnswl.org : 127.0.6.2]; IP_SCORE(-2.75)[ip: (-9.55), ipnet: 2a01:4f8::/29(-2.66), asn: 24940(-1.50), country: DE(-0.02)]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:24940, ipnet:2a01:4f8::/29, country:DE]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 03 May 2020 13:32:44 -0000 ## The Doctor via freebsd-ports (freebsd-ports@freebsd.org): > Then let's look at the file: I'd think you better run named-checkconf yourself on your file - that way you get the full file (and all related config) checked as it exists on your system - not a partial file with "whatever the mail systems in between did". Just a few remark: - you included a control key - even if it's restricted to localhost, it's good practice to generate a new one - when you're at that, you could also switch to a newer algorithm for that control channel - hmac-sha256 or whatever - there's an unused acl - your indentation is all over the place, which makes for a more difficult reading than neccessary - network masks are used in a somewhat inconstant manner, that may result in funny debugging later on (that's me talking from experience) Regards, Christoph -- Spare Space