LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices

Reply
 
Search this Thread
Old 08-27-2003, 06:20 AM   #1
TongueTied
Member
 
Registered: Aug 2003
Distribution: SuSE 8.1 pro
Posts: 94

Rep: Reputation: 15
Question /usr/sbin/named error?


I found the following in my messages file and was wondering what it means. Can anyone help?

Aug 27 07:12:46 myserver /usr/sbin/named[1403]: client 192.168.1.12#4469: update denied
Aug 27 07:12:46 myserver /usr/sbin/named[1403]: client 192.168.1.12#4474: update denied

myserver is the linux server name and 192.168.1.12 is one of the win2k boxes on the network. I seem to be getting this message for all the windows machines on the network not just the one listed in the message.

Any ideas what this might be from?
 
Old 08-27-2003, 07:38 AM   #2
cnjohnson
Member
 
Registered: Nov 2002
Location: Nashville
Distribution: FreeBSD, Linux, OS-X
Posts: 544

Rep: Reputation: 30
Re: /usr/sbin/named error?

Quote:
Originally posted by TongueTied
I found the following in my messages file and was wondering what it means. Can anyone help?

[edited]

Any ideas what this might be from?
It means what it says. Client 192.168.1.12 sent a dynamic update request (from ports 4469 and 4474) and your server refused to process it. The way to put a stop to it depends. If you want this host to be permitted to send dynamic update requests, put an allow-update clause at the appropriate place in named.conf. If you don't, go to all the Win2k boxes and stop them from requesting to update DNS. Enabling dynamic DNS is fraught with security problems: allowed hosts can pretty much add or remove whatever they like from a zone. And it's no longer possible to manually maintain a zone file once the zone is subject to dynamic updates.

Cheers--
Charles
 
Old 08-27-2003, 08:39 PM   #3
TongueTied
Member
 
Registered: Aug 2003
Distribution: SuSE 8.1 pro
Posts: 94

Original Poster
Rep: Reputation: 15
Thanks Charles.
However, I don’t have dhcp running (or even installed) on any of the machines. Could this be a result of the “Register this connection’s address in DNS” checkbox found on the DNS tab of the advanced settings for TCPIP on the win2k machines?

If not, how would I stop the windoz machines from attempting to update the DNS record?
Cheers,
Philip
 
Old 08-28-2003, 07:41 AM   #4
cnjohnson
Member
 
Registered: Nov 2002
Location: Nashville
Distribution: FreeBSD, Linux, OS-X
Posts: 544

Rep: Reputation: 30
Quote:
Originally posted by TongueTied
Thanks Charles.
However, I don’t have dhcp running (or even installed) on any of the machines. Could this be a result of the “Register this connection’s address in DNS” checkbox found on the DNS tab of the advanced settings for TCPIP on the win2k machines?

[edited]
Cheers,
Philip
Yes, you are on the right track. My co. no longer uses Win2k boxes, but IIRC, it was something like that which hushed them up. In any event, start poking the Win2k boxes...you don't need their chatter on the network.

Cheers--
Charles
 
Old 08-28-2003, 09:34 PM   #5
TongueTied
Member
 
Registered: Aug 2003
Distribution: SuSE 8.1 pro
Posts: 94

Original Poster
Rep: Reputation: 15
Thanks Charles,
That seemed to have been it. I am no longer getting the message in the messages log.

If you don't mind me asking, if you don't use win2k boxes anymore, what are you using? I have one winxp box and it also requires the same fix. Have you deployed linux as a desktop solution? I would love to be able to do that but right now, my co. has too much os specific software.

Anyway, thanks for the help.
Cheers,
Philip
 
Old 08-29-2003, 07:35 AM   #6
cnjohnson
Member
 
Registered: Nov 2002
Location: Nashville
Distribution: FreeBSD, Linux, OS-X
Posts: 544

Rep: Reputation: 30
Quote:
Originally posted by TongueTied

[edited]
If you don't mind me asking, if you don't use win2k boxes anymore, what are you using? I have one winxp box and it also requires the same fix. Have you deployed linux as a desktop solution?
[edited]
Philip
We have about 850 PC's deployed. Our vendor (who is soon about to not to be our vendor) no longer supports Win98, so we have a few XP boxes, but the rest are RH desktops. Slowly, but surely, we'll be linux everywhere. We will not be completely shed of Microsoft (nor do we want to be) because there are a few people who really do need the complete functionality that Office offers, but most of our users (clinical psychologists, LCSW's and the like) need a web browser for access to our browser based applications, and a functional office suite, which we give them in mozilla and open office.

Cheers--
Charles
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Starting httpd: /usr/sbin/httpd: symbol lookup error: /usr/local/lib/libaprutil-0.so. bijuhpd Linux - Newbie 1 10-30-2005 05:07 PM
what is /usr/sbin/xntps -q orko Linux - Security 5 05-11-2005 02:52 PM
/usr/sbin and /sbin world read/executable... why? lazlow69 Slackware 3 04-29-2004 05:06 PM
As root, not seeing /sbin and /usr/sbin in path weghman Linux - Newbie 3 04-25-2004 01:06 PM
/sbin vs /usr/sbin !?!?!? different? sirpelidor Red Hat 1 10-24-2003 03:33 AM


All times are GMT -5. The time now is 10:04 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration