[14563] in Kerberos
Re: Solaris 8 and libresolv
daemon@ATHENA.MIT.EDU (Mitchell E Berger)
Tue Jun 12 14:41:28 2001
Message-Id: <200106121834.OAA15101@byte-me.mit.edu>
To: Nicolas Williams <Nicolas.Williams@ubsw.com>
cc: kerberos@MIT.EDU, flaminio <Livio.Flaminio@agat.univ-lille1.fr>
In-Reply-To: Your message of "Tue, 12 Jun 2001 10:55:06 EDT."
<20010612105504.Y9416@sm2p1386swk.wdr.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Date: Tue, 12 Jun 2001 14:34:43 -0400
From: Mitchell E Berger <mitchb@MIT.EDU>
> You might see this:
>
> % grep hosts /etc/nsswitch.conf
> hosts: files dns
> %
...
> It used to be that Solaris wouldn't boot if DNS was first in the hosts
> lookup order. Is this still the case?
I've been bitten by this particular bug before. I'm not certain whether it's still here in Solaris 8, but DON'T put dns first in the hosts line of nsswitch.conf unless you're absolutely certain that's what you want. Even if the bug isn't there, it would mean everytime your machine needs to look up its own address, it will consult DNS rather than your local /etc/hosts, which is partially meant to specify hosts you already know about and don't need dns for. If your IP were 1.2.3.4 and your hostname were something.somewhere.com, your /etc/hosts should have a line like this:
1.2.3.4 something.somewhere.com something
(You may also have other aliases at the end of that line... so long as the fully qualified name is first and "files" is first on the hosts line of /etc/nsswitch.conf, you'll be fine.) My KDC is thrilled with this configuration.
Mitch
