| Server IP : 195.201.23.43 / Your IP : 3.141.35.52 Web Server : Apache System : Linux webserver2.vercom.be 5.4.0-192-generic #212-Ubuntu SMP Fri Jul 5 09:47:39 UTC 2024 x86_64 User : kdecoratie ( 1041) PHP Version : 7.1.33-63+ubuntu20.04.1+deb.sury.org+1 Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals, MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : OFF | Sudo : ON | Pkexec : ON Directory : /usr/share/webmin/bind8/ |
Upload File : |
#!/usr/bin/perl
# Actually setup rndc
use strict;
use warnings;
no warnings 'redefine';
no warnings 'uninitialized';
our (%access, %text, %config);
require './bind8-lib.pl';
$access{'defaults'} || &error($text{'rndc_ecannot'});
&error_setup($text{'rndc_err'});
my $cfile = &make_chroot($config{'named_conf'});
# Generate the RNDC config
my ($out, $err);
&execute_command($config{'rndcconf_cmd'}, undef, \$out, \$err);
if ($?) {
&error("<pre>$err</pre>");
}
my $CONF;
&open_lock_tempfile($CONF, ">$config{'rndc_conf'}");
&print_tempfile($CONF, $out);
&close_tempfile($CONF);
&set_ownership_permissions(0, 0, 0600, $config{'rndc_conf'});
my $rconf = [ &read_config_file($config{'rndc_conf'}) ];
# Get the new key
my $rkey = &find("key", $rconf);
$rkey || &error($text{'rndc_ekey'});
my $secret = &find_value("secret", $rkey->{'members'});
$secret || &error($text{'rndc_esecret'});
my $options = &find("options", $rconf);
my $port;
if ($options) {
$port = &find_value("default-port", $options->{'members'});
}
$port ||= 953;
my $algorithm = &find_value("algorithm", $rkey->{'members'}) ||
&find_value("algorithm", $rconf);
$algorithm ||= "hmac-md5";
# Add the key to named.conf
&lock_file($cfile);
my $parent = &get_config_parent();
my $conf = &get_config();
my @keys = &find("key", $conf);
my ($key) = grep { $_->{'values'}->[0] eq "rndc-key" } @keys;
if (!$key) {
# Need to create key
$key = { 'name' => 'key',
'type' => 1,
'values' => [ "rndc-key" ],
'members' => [ ] };
push(@keys, $key);
}
&save_directive($key, "algorithm", [ { 'name' => 'algorithm',
'values' => [ $algorithm ] } ], 1, 1);
&save_directive($key, "secret", [ { 'name' => 'secret',
'values' => [ $secret ] } ], 1, 1);
&save_directive($parent, 'key', \@keys, 0);
# Make sure there is a control for the inet port
my $controls = &find("controls", $conf);
if (!$controls) {
# Need to add controls section
$controls = { 'name' => 'controls', 'type' => 1 };
&save_directive($parent, 'controls', [ $controls ]);
}
my $inet = &find("inet", $controls->{'members'});
if (!$inet) {
# Need to add inet entry
$inet = { 'name' => 'inet',
'type' => 2,
'values' => [ "127.0.0.1", "port", $port ],
'members' => { 'allow' => [
{ 'name' => "127.0.0.1" } ],
'keys' => [
{ 'name' => "rndc-key" } ]
}
};
}
else {
# Just make sure it is valid
my %keys = map { $_->{'name'}, 1 } @{$inet->{'members'}->{'keys'}};
if (!$keys{'rndc-key'}) {
push(@{$inet->{'members'}->{'keys'}},
{ 'name' => "rndc-key" });
}
}
&save_directive($controls, 'inet', [ $inet ], 1);
&flush_file_lines();
&set_ownership($config{'rndc_conf'});
# MacOS specific fix - remove include for /etc/rndc.key , which we don't need
my $lref = &read_file_lines($cfile);
for(my $i=0; $i<@$lref; $i++) {
if ($lref->[$i] =~ /^include\s+"\/etc\/rndc.key"/i) {
splice(@$lref, $i, 1);
last;
}
}
&flush_file_lines($cfile);
&unlock_file($cfile);
&restart_bind();
&webmin_log("rndc");
&redirect("");
Private