check_dns works fine for half my servers, fails for other half

Andreas Ericsson ae at op5.se
Sat Sep 1 09:22:01 CEST 2007


Sean Schertell wrote:
>> nutmeg is returning output from nslookup that check_dns can't  
>> parse. It
>> would appear that nutmeg isn't configured to perform recursive lookups
>> (lookups for domains it doesn't host) and you're expecting it to.
>>
>>
>> As an aside, you shouldn't be allowing me to perform recursive lookups
>> with your servers anyway. Rosemary could easily be hijacked to perform
>> DNS based DOS attacks.
>>
>> -
>> Marc
>>
> 
> 
> So does that mean then that it isn't possible to use the check_dns  
> plugin without enabling recursive lookups and leaving my server open  
> to DNS DOS attacks?
> 
> Is there any way to use dns_check safely?
> 

Ask it for a name it knows about.

-- 
Andreas Ericsson                   andreas.ericsson at op5.se
OP5 AB                             www.op5.se
Tel: +46 8-230225                  Fax: +46 8-230231

-------------------------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc.
Still grepping through log files to find problems?  Stop.
Now Search log events and configuration files using AJAX and a browser.
Download your FREE copy of Splunk now >>  http://get.splunk.com/
_______________________________________________
Nagios-users mailing list
Nagios-users at lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/nagios-users
::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. 
::: Messages without supporting info will risk being sent to /dev/null





More information about the Users mailing list