I have a couple of problems on my hands. I am trying to run both Sun
Yellow Pages and BIND (I believe version 4.8.1). With much help, I
got a functional nameserver up the Sun and nslookup etc. works great.
Here's the rub: I thought all I had to do was to start up ypserv with
the "-i" (more on that later) flag and to propagate the hosts.byname
and the hosts.byaddr YP maps with the "-b" flag on makedbm. I did
that. My yp topology is one master server (called "lectroid"), many
clients and one slave server (called "blublaze").
Issue 3: I can never seem to get "ypset" to work anymore. I keep getting
told that I cannot send some message to ypbind on the master server.
What's going on ? This problem is particularly bad since
I can never seem to dynamically change YP servers!!!!!
Thanks a lot for your attention.
I throw myself at your mercy,
Farooq> Issue 3: I can never seem to get "ypset" to work anymore. I
Farooq> keep getting told that I cannot send some message to
Farooq> ypbind on the master server. What's going on ? This
Farooq> problem is particularly bad since I can never seem to
Farooq> dynamically change YP servers!!!!!
This is an 'undocumented' security feature. To over-ride it, start
ypbind with a '-ypset' flag. Whatch out when using this as anyone can
then issue a 'ypset' command to point you at a set of bogus NIS maps.
The insecurity of this procedure should be obvious.
I really would recommend doing what Phil suggested in a previous message.
--
Mark D. Baushke
mdb@ESD.3Com.COM
==============================================================================
>From uucp Sat Jan 27 19:42 EST 1990
>From uunet!Think.COM!rlk Sat Jan 27 19:42:04 1990 remote from stratus
Received: by cloud9.Stratus.COM (smail2.5)
id AA14552; 27 Jan 90 19:42:04 EST (Sat)
Received: by stratus.stratus.com (/\=-/\ Smail3.1.17.5 #17.7)
id <m0gs2qw-00007wC@stratus.stratus.com>; Sat, 27 Jan 90 19:33 EST
Received: from Gateway.Think.COM by uunet.uu.net (5.61/1.14) with SMTP
id AA19722; Sat, 27 Jan 90 17:05:09 -0500
Return-Path: <rlk@Think.COM>
Received: from Underprize.Think.COM by Think.COM; Sat, 27 Jan 90 17:05:03 -0500
Received: by underprize.think.com; Sat, 27 Jan 90 17:04:33 EST
Date: Sat, 27 Jan 90 17:04:33 EST
Message-Id: <9001272204.AA13076@underprize.think.com>
From: Robert L. Krawitz <stratus!uunet!Think.COM!rlk>
Sender: stratus!uunet!Think.COM!rlk
To: fmbutt@cloud9.stratus.com
In-Reply-To: <9001271343.AA11892@cloud9.Stratus.COM>
Subject: YP/NAMED woes.....please HELP..
Status: R
You didn't say which version of SunOS you're running. It's a critical
piece of information; the yp/ns interface changed in 4.0
Date: 27 Jan 90 13:43:01 EST (Sat)
From: Farooq Butt <fmbutt@cloud9.stratus.com>
I have a couple of problems on my hands. I am trying to run both Sun
Yellow Pages and BIND (I believe version 4.8.1). With much help, I
got a functional nameserver up the Sun and nslookup etc. works great.
Here's the rub: I thought all I had to do was to start up ypserv with
the "-i" (more on that later) flag and to propagate the hosts.byname
and the hosts.byaddr YP maps with the "-b" flag on makedbm. I did
that. My yp topology is one master server (called "lectroid"), many
clients and one slave server (called "blublaze").
You need to build the hosts map (both, actually) with makedbm -b.
ypserv -i is a relic of SunOS 3.x that doesn't exist in 4.0. BTW, if
you have 4.0 machines on your network, don't run ypserv on a 3.x server.
4.0 yp is not upward compatible with 3.5 (although it's fine to run a
3.5 client off a 4.0 server).
Issue 1: When I do a "ypcat ypservers" command, I get two carriage
returns. Period. No hostnames. No nothing. This has only
started happening since I have run DNS. What's up ?
I'm surprised it ever worked. The ypservers map's keys are the names of
your yp servers, while the contents are empty strings (since the only
information needed is the names of the servers). Try ypcat -k ypservers
-- this prints out the keys.
Issue 3: I can never seem to get "ypset" to work anymore. I keep getting
told that I cannot send some message to ypbind on the master server.
What's going on ? This problem is particularly bad since
I can never seem to dynamically change YP servers!!!!!
I think that this is actually considered a semi-feature. I think the
officially correct sequence in 4.0 is to kill ypbind and run ypbind -s
server. Try reading the man page on ypbind and ypset. I agree that
this loses big time.
Issue 4: I keep thinking that I have missed some crucial step here.
Is this true or am I slowly going mad ?
I think you have upgraded from 3.5 to 4.0.
Issue 5: Can YP/BIND even live together or is this a fantasy ?
Sure they can. We do it here, and it works just fine. Is your
/etc/resolv.conf correct? This is an example of a resolv.conf file.
The 'nameserver' lines are the IP addresses of the nameservers (running
named); the 'domain think.com' line means that think.com is the default
domain to be appended to unqualified names. This sample is what ours
looks like; you need your own version. You need a /etc/resolv.conf file
on each yp server.
nameserver 192.5.104.212
nameserver 192.5.104.199
domain think.com
Issue 6: Where in the lord's name is the "-i" flag on ypserv
documented ? The Sun man pages never talk about *any*
flags to either ypbind OR ypserv.....
It no longer exists, as I explained above.
Issue 7: Could someone puuuuleeeze send me a check list for doing this
if one exists. Currently my system resembles the folowing
equation:
Functional BIND + Functional YP = DISASTER
1) Make sure that your YP makefile has makedbm -b for your hosts maps.
2) Make sure that ONLY SunOS 4.0 machines are running yp servers in a
mixed network (actually, non-SunOS 3.5 yp servers work; SunOS <4.0
ypservers are what break, it seems).
3) Make sure that all yp server machines have correct /etc/resolv.conf
files (this has killed us from time to time when we've set up new yp
servers without a resolv.conf; all attempts to query hang).
This should probably do it.
==============================================================================
>From uucp Sat Jan 27 19:42 EST 1990
>From uunet!kosciusko.ESD.3Com.COM!mdb Sat Jan 27 19:42:07 1990 remote from stratus
Received: by cloud9.Stratus.COM (smail2.5)
id AA14556; 27 Jan 90 19:42:07 EST (Sat)
Received: by stratus.stratus.com (/\=-/\ Smail3.1.17.5 #17.7)
id <m0gs2r7-0000FTC@stratus.stratus.com>; Sat, 27 Jan 90 19:33 EST
Received: from bridge2.ESD.3Com.COM by uunet.uu.net (5.61/1.14) with SMTP
id AA02369; Sat, 27 Jan 90 18:16:41 -0500
Received: from kosciusko.ESD.3Com.COM by bridge2.ESD.3Com.COM with SMTP (5.61++/IDA-1.2.8)
id AA21631 (for fmbutt@cloud9.stratus.com); Sat, 27 Jan 90 15:16:31 PST
Received: from localhost by kosciusko.ESD.3Com.COM (3.2/SMI-3.0DEV3-890819)
id AA04458; Sat, 27 Jan 90 15:16:27 PST
Message-Id: <9001272316.AA04458@kosciusko.ESD.3Com.COM>
To: fmbutt@cloud9.Stratus.COM (Farooq Butt)
Subject: Re: howdy.....a question or two about your mail
Organization: 3Com, 2081 N. Shoreline Blvd., Mountain View, CA 94043
Phone.......: (415) 940-7656 (Office); (415) 969-8328 (Home)
(415) 969-4400 (General Office)
In-Reply-To: Your message of Sat, 27 Jan 90 17:42:29 EST
<9001271742.AA13207@cloud9.Stratus.COM>
Date: Sat, 27 Jan 90 15:16:25 -0800
From: Mark D. Baushke <stratus!uunet!kosciusko.ESD.3Com.COM!mdb>
Status: R
On 27 Jan 90 17:42:29 EST (Sat), fmbutt@cloud9.Stratus.COM (Farooq Butt) said:
Farooq> Thanks for your reply. I have a question for you (as you
Farooq> would expect :-) ) �....where are all the SECRET flags to
Farooq> ypbind / ypserv documented if not via Sun docs ????
The SECRET flags are (probably) documented in the source of course :-(.
As I do not happen to have a copy of the source, this makes things
more difficult. I suppose that a 'strings' command might turn up the
flags, but that is not really vary likely.
The best thing to do is to post to lists like sun-spots or
sun-managers and hope that someone with access to the source will
respond...It seems to be working much better than getting Sun to give
us usable documentation :-(.
In the case of '-ypset', it is given in the file
uunet.uu.net:/sun-fixes/README .
The arcane use of '-i' was for SunOS 3.5 versions of ypserv and was
mentioned in a posting to comp.sys.sun (aka sun-spots) a while back.
As far as I know, the '-i' flag was removed in SunOS 4.x in favor of
putting the information into the NIS maps themselves (as you know
makedbm has a funny option for that these days).
BTW: It seems that my reply to your message was NOT posted to
sun-managers since it had the sun-managers address on the CC: line
instead of the To: line. It would be nice if you would post a summary
of responses that you get rather than have me re-post my message.
Please make a point of being careful with the '-ypset' option, it
really is quite a nasty security hole.
--
Mark D. Baushke
mdb@ESD.3Com.COM
ok
==============================================================================
>From uunet!nuada.lbl.gov!mike Sat Jan 27 16:13:03 1990
Return-Path: <uunet!nuada.lbl.gov!mike>
Received: from lectroid.sw.stratus.com (lectroid-gw.sw.stratus.com) by mrbt.sw.stratus.com (4.0/SMI-4.0)
id AA07850; Sat, 27 Jan 90 16:13:02 EST
Received: from uunet.UUCP by lectroid.sw.stratus.com (4.0/SMI-4.0 Stratus Computer Corporation)
id AA25535; Sat, 27 Jan 90 16:13:01 EST
Received: from nuada.lbl.gov by uunet.uu.net (5.61/1.14) with SMTP
id AA26996; Sat, 27 Jan 90 15:17:28 -0500
Received: by nuada.lbl.gov (5.59/s2.2)
id AA03236; Sat, 27 Jan 90 12:14:23 PST
Message-Id: <9001272014.AA03236@nuada.lbl.gov>
From: uunet!nuada.lbl.gov!mike (Michael Helm)
Date: Sat, 27 Jan 90 12:14:21 PST
In-Reply-To: fmbutt@mrbt.sw.stratus.com (Farooq Butt)
"SUN YELLOW PAGES HATES NAMESERVERS -- HELP !" (Jan 27, 1:35pm)
Reply-To: uunet!fionn.lbl.gov!mike
X-Mailer: Mail User's Shell (6.5.6 8/04/89)
To: fmbutt@mrbt.sw.stratus.com (Farooq Butt)
Subject: Re: SUN YELLOW PAGES HATES NAMESERVERS -- HELP !
Status: RO
I've seen your note on the sun lists too, I've been
thinking about it. Here's a few ideas:
1) Make sure you get the newest yp{junk} you can get.
I don't know if the uunet stuff is the latest, but that
is what I'm currently using on my mixed 4.0.1/4.0.3 collection.
Otherwise, it's time for 1-800-usa4sun.
2) Also get the latest sendmail.mx
3) makedbm -b for both host maps
4) (on the yp master): Set up your nameserver however you need to & make sure it
works to your satisfaction, whatever that means to you eg
run nslookup or Charles Hedrick's host & make sure it can talk
to the DNS world; connect to that machine's nameserver from another
host the same way &c.
One thing I wonder is whether or not BIND works at all in your
case; I guess you'd know. For example stratus.com doesn't
seem to be directly (visibly) on the Internet.
5) Now do the same as #4 for all your slave servers.
6) You can use makedbm -u ypservers to see if your ypservers map
is ok. You can also do this to your hosts maps to see if they're
ok; the YP_INTERDOMAIN key should be in there somewhere.
7) At this point it should all be working, at least on the master.
You can test this with, say, telnet.
8) If you want to play around with ypset & you've done #1
(or maybe even if not), you would need to start ypbind with
the undocumented ypbind -ypset or ypbind -ypsetme options.
Forget about ypserv -i unless you're running a 386i.
9) a lot of things can go wrong with yp. That may be why
communication between your slave & master broke down
(considering you were transferring hosts maps it suggests
that). You mite want to just re-ypinit the slave after
verifying your master's yp configuration is sane.
Anyway, this can work, I've been doing it in various forms
for over 18 months with only minor problems (like the
change between ypserv -i & YP_INTERDOMAIN).
Let us or at least me know how it goes.
Michael Helm
(my opinions only)
===============================================================================
>From uunet!monsoon.c3.lanl.gov!dlc Sat Jan 27 18:12:58 1990
Return-Path: <uunet!monsoon.c3.lanl.gov!dlc>
Received: from lectroid.sw.stratus.com (lectroid-gw.sw.stratus.com) by mrbt.sw.stratus.com (4.0/SMI-4.0)
id AA07918; Sat, 27 Jan 90 18:12:57 EST
Received: from uunet.UUCP by lectroid.sw.stratus.com (4.0/SMI-4.0 Stratus Computer Corporation)
id AA26440; Sat, 27 Jan 90 18:12:57 EST
Received: from p.lanl.gov by uunet.uu.net (5.61/1.14) with SMTP
id AA29521; Sat, 27 Jan 90 17:52:11 -0500
Received: by p.lanl.gov (5.54/1.14)
id AA16416; Sat, 27 Jan 90 15:51:59 MST
Received: by monsoon.c3.lanl.gov (4.0/5.27)
id AA14598; Sat, 27 Jan 90 15:51:59 MST
Date: Sat, 27 Jan 90 15:51:59 MST
From: uunet!monsoon.c3.lanl.gov!dlc (Dale Carstensen)
Message-Id: <9001272251.AA14598@monsoon.c3.lanl.gov>
To: fmbutt@mrbt.sw.stratus.com
Subject: Re: SUN YELLOW PAGES HATES NAMESERVERS -- HELP !
Status: RO
The "-i" is for 3.5, not 4.x. The -b takes care of 4.x.
Ypservers maps have no data, only keys. So use "ypcat -k ypservers" to
see what's there. I don't think you remember seeing anything but blank
lines without the "-k."
There is a bug with hosts.byaddr and slave servers, depending on the slave's
model and OS version (maybe the master's, too, I don't know.) I put rcp
commands for hosts.byaddr in my master's /var/yp/Makefile to work around
that problem. With the appropriate /.rhosts on the slaves (have the
master both by name and address in there:
name.sub.domain.name root
192.1.1.1 root
(with the correct name and address)).
It was a security problem for ypset to work -- it works from anonymous
remote sites when it works. So ypbind doesn't allow ypset to work. If
you want the old, dangerous behavior, use "-ypset" on your ypbind command.
If you're not running 4.0.3, you need some programs for uunet. You
probably need sendmail and portmap, even for 4.0.3. You can also
try the libc.so.resolv route, but I prefer the YP "-b" route because
when I add new names, I can usually get bootparams to work right away.
Changing names, however, is not quite so pleasant. We need a little
utility that sends bootparams-servers-reinitialize-yourselves messages
around the net to make that pleasant.
===============================================================================
>From uunet!nuada.lbl.gov!mike Sat Jan 27 19:12:34 1990
Return-Path: <uunet!nuada.lbl.gov!mike>
Received: from lectroid.sw.stratus.com ([134.111.2.55]) by mrbt.sw.stratus.com (4.0/SMI-4.0)
id AA07942; Sat, 27 Jan 90 19:12:33 EST
Received: from uunet.UUCP by lectroid.sw.stratus.com (4.0/SMI-4.0 Stratus Computer Corporation)
id AA27526; Sat, 27 Jan 90 19:12:27 EST
Received: from nuada.lbl.gov by uunet.uu.net (5.61/1.14) with SMTP
id AA10790; Sat, 27 Jan 90 19:00:40 -0500
Received: by nuada.lbl.gov (5.59/s2.2)
id AA03432; Sat, 27 Jan 90 15:57:34 PST
Message-Id: <9001272357.AA03432@nuada.lbl.gov>
From: uunet!nuada.lbl.gov!mike (Michael Helm)
Date: Sat, 27 Jan 90 15:57:33 PST
In-Reply-To: lectroid!mrbt!fmbutt@uunet.uu.net (Farooq Butt)
"Re: SUN YELLOW PAGES HATES NAMESERVERS -- HELP !" (Jan 27, 5:53pm)
Reply-To: uunet!fionn.lbl.gov!mike
X-Mailer: Mail User's Shell (6.5.6 8/04/89)
To: lectroid!mrbt!fmbutt (Farooq Butt)
Subject: Re: SUN YELLOW PAGES HATES NAMESERVERS -- HELP !
Status: RO
On Jan 27, 5:53pm, Farooq Butt wrote:
> though.... How do I make sure YP_INTERDOMAIN (or whatever you said)
> is in the maps. Remember that the ypservers map is a strange on
It would be in the hosts maps.
So
makedbm -u hosts.byname
should unpack it.
> not in the Makefile....
This is sort of a botch in the administration of yp, isn't it?
You pretty much have to keep it up by hand. I guess one
could add it to the makefile & make server list, but I've
never gotten around to it.
>
> Oh yes, how can I get the documentation on the undocumented ypbind
> and ypserv flags.....if not from Sun....
I don't remember exactly how I found out.
Mostly from sun-spots/sun-managers/sun-nets & the 386i list.
(The 386i now needs BOTH ypserv -i && the makedbm -b hack. Nice, huh?
Fortunately somebody from the 386i list who works for Sun clued
me in on that.) There mite be some documentation w/ the uunet
nameserver kit in sun-fixes but I don't seem to have it on hand.
I hope Sun cleans this all up soon, like w/ 4.1. Write a letter to your
sales rep.
Luck,
Michael Helm
===============================================================================
>From uunet!Central.Sun.COM!Jim.Thompson Sat Jan 27 20:52:58 1990
Return-Path: <uunet!Central.Sun.COM!Jim.Thompson>
Received: from lectroid.sw.stratus.com (lectroid-gw.sw.stratus.com) by mrbt.sw.stratus.com (4.0/SMI-4.0)
id AA08026; Sat, 27 Jan 90 20:52:57 EST
Received: from uunet.UUCP by lectroid.sw.stratus.com (4.0/SMI-4.0 Stratus Computer Corporation)
id AA01115; Sat, 27 Jan 90 20:52:56 EST
Received: from Sun.COM by uunet.uu.net (5.61/1.14) with SMTP
id AA19629; Sat, 27 Jan 90 19:48:07 -0500
Received: from snail.Sun.COM (snail.Corp.Sun.COM) by Sun.COM (4.1/SMI-4.1)
id AA11220; Sat, 27 Jan 90 16:48:00 PST
Received: from Central.Sun.COM (texsun-bb) by snail.Sun.COM (4.1/SMI-4.1)
id AA06461; Sat, 27 Jan 90 16:47:56 PST
Received: from wintermute.Central.Sun.COM by Central.Sun.COM (4.1/SMI-4.1)
id AA29721; Sat, 27 Jan 90 18:47:52 CST
Received: by wintermute.Central.Sun.COM (4.1/SMI-4.1)
id AA02853; Sat, 27 Jan 90 18:46:53 CST
Date: Sat, 27 Jan 90 18:46:53 CST
From: uunet!Central.Sun.COM!Jim.Thompson (Jim Thompson)
Message-Id: <9001280046.AA02853@wintermute.Central.Sun.COM>
To: bind@ucbarpa.Berkeley.EDU, fmbutt@mrbt.sw.stratus.com
Subject: Re: SUN YELLOW PAGES HATES NAMESERVERS -- HELP !
Status: R
I suppose I'll get all kinds of hate mail for this, but here
goes...
From: fmbutt@mrbt.sw.stratus.com (Farooq Butt)
To: bind@ucbarpa.Berkeley.EDU
Subject: SUN YELLOW PAGES HATES NAMESERVERS -- HELP !
I have a couple of problems on my hands. I am trying to run both Sun
Yellow Pages and BIND (I believe version 4.8.1). With much help, I
got a functional nameserver up the Sun and nslookup etc. works great.
Here's the rub: I thought all I had to do was to start up ypserv with
the "-i" (more on that later) flag and to propagate the hosts.byname
and the hosts.byaddr YP maps with the "-b" flag on makedbm. I did
that. My yp topology is one master server (called "lectroid"), many
clients and one slave server (called "blublaze").
You don't say what version of Sun OS you're, running. If its 3.5 you
call ypserv with the '-i' flag. If its 4.x, you build the host.by* YP
maps with the '-b' flag. Actually, what you want is: (extracted lines
from the makefile here):
| $(MAKEDBM) -b -l - $(YPDBDIR)/$(DOM)/hosts.byname; \
| $(MAKEDBM) -b - $(YPDBDIR)/$(DOM)/hosts.byaddr; \
The '-l' flag is a hack to prevent lowercase/uppercase problems
until 4.1, when they go 'away'.
Issue 1: When I do a "ypcat ypservers" command, I get two carriage
returns. Period. No hostnames. No nothing. This has only
started happening since I have run DNS. What's up ?
As it should be, if you want to see the contents you'll have
to makedbm -u /var/yp/`domainname`/ypservers.
Issue 2: Here's the transcript of a session:
Script started on Sat Jan 27 13:08:49 1990
blublaze# hostname
blublaze
blublaze# ypwhich
blublaze-gw.sw.stratus.com
blublaze# ypxfr -f -h lectroid hosts.byname
blublaze# ypxfr -f -h lectroid hosts.byaddr
ypxfr(get_misc_recs) RPC call to lectroid failed: RPC: Timed out
blublaze#
script done on Sat Jan 27 13:10:17 1990
How come the first "ypxfr" call works and the second bombs out ?
What does the RPC error message refer to ?
Perhaps you have a a slightly buggy version of the YP system,
the original 4.0 (and maybe 4.0.1) systems had a bug whereby the
internal flag that signals the YP system to ask DNS about things
gets stripped during a ypxfr. See below. The error message means that
the timer that prevents you from hanging forever on certain calls
fired, thusly the diagnostic.
Issue 3: I can never seem to get "ypset" to work anymore. I keep getting
told that I cannot send some message to ypbind on the master server.
What's going on ? This problem is particularly bad since
I can never seem to dynamically change YP servers!!!!!
'ypserv' has a new switch, which by default is turned 'off'
It is the '-ypset|-ypsetme' flag(s). If they're not turned 'on',
then the RPC call that does the ypset isn't allowed. Security holes,
ya know.
Issue 4: I keep thinking that I have missed some crucial step here.
Is this true or am I slowly going mad ?
Maybe. :-)
Issue 5: Can YP/BIND even live together or is this a fantasy ?
Yes.
Issue 6: Where in the lord's name is the "-i" flag on ypserv
documented ? The Sun man pages never talk about *any*
flags to either ypbind OR ypserv.....
Its gone under 4.x.
Issue 7: Could someone puuuuleeeze send me a check list for doing this
if one exists. Currently my system resembles the folowing
equation:
Functional BIND + Functional YP = DISASTER
Thanks a lot for your attention.
I throw myself at your mercy,
Farooq Butt
fmbutt@mrbt.sw.stratus.com
Steps:
1) If you're running anything < 4.0.3, run, don't walk, to
uunet and get most of the contents of the 'sun-fixes' directory.
2) Install pieces of the above, as necessary.
3) change your /var/yp/Makefile to include the two lines
quoted above.
4) re ypinit/ypxfr or whatever.
5) Ensure that there is one of:
a) a running nameserver
b) a file: /etc/resolv.conf
on each system that has a ypserv process running on it.
(masters and slaves)
If you have more trouble, send email, though I'm suppose to feed
you to the USAC (800-USA-4SUN) folk.
Jim
===============================================================================
>From uunet!ultra.com!shj Sun Jan 28 00:12:33 1990
Return-Path: <uunet!ultra.com!shj>
Received: from lectroid.sw.stratus.com (lectroid-gw.sw.stratus.com) by mrbt.sw.stratus.com (4.0/SMI-4.0)
id AA08938; Sun, 28 Jan 90 00:12:32 EST
Received: from uunet.UUCP by lectroid.sw.stratus.com (4.0/SMI-4.0 Stratus Computer Corporation)
id AA07035; Sun, 28 Jan 90 00:12:31 EST
Received: from ames.arc.nasa.gov by uunet.uu.net (5.61/1.14) with SMTP
id AA19130; Sat, 27 Jan 90 22:29:13 -0500
Received: by ames.arc.nasa.gov (5.61/1.2); Sat, 27 Jan 90 19:29:09 -0800
Received: from macduff.ultra.com by ultra.com (4.0/Ultra-1.2-01-15-90)
id AA12236; Sat, 27 Jan 90 19:25:58 PST
Date: Sat, 27 Jan 90 19:25:58 PST
From: uunet!ultra.com!shj (Steve Jay)
Message-Id: <9001280325.AA12236@ultra.com>
Received: by macduff.ultra.com (4.0/Ultra_client_01-11-90)
id AA10276; Sat, 27 Jan 90 19:27:36 PST
To: fmbutt@mrbt.sw.stratus.com
Subject: Re: YP/NAMED woes.....please HELP..
Status: R
I can't really help you with the YP/NAMED problems, but I can explain
a couple of the things you observed.
>Issue 1: When I do a "ypcat ypservers" command, I get two carriage
> returns. Period. No hostnames. No nothing. This has only
> started happening since I have run DNS. What's up ?
All yp maps are made up of a "key" and a "value". For the ypservers map,
the hostnames are in the "key" field, with a NULL "value". By default,
ypcat shows only the value field of each entry. Try "ypcat -k ypservers".
You say "This has only started happening since I have run DNS". As far
as I know, ypcat has always behaved the way I described it. If you were
previously getting output from "ypcat ypservers", I can't explain it.
>Issue 3: I can never seem to get "ypset" to work anymore. I keep getting
> told that I cannot send some message to ypbind on the master server.
> What's going on ? This problem is particularly bad since
> I can never seem to dynamically change YP servers!!!!!
Rumor has it that Sun decided that ypset was a giant security hole.
I think if you look at the console of the machine on which you tried
the ypset, you'll see a message like:
ypbind: Set domain request to host 192.9.103.1,
from host 192.9.101.46, failed (ypset not allowed)!
This happens even when the ypset is done by root.
What I haven't figured out yet is if Sun has disabled ypset completely,
or there is some magic way to get it to work. I suspect there's magic
somewhere, or else why would there still be a ypset command? If you
find the magic, please let me know.
Good luck!
Steve Jay
Ultra Network Technologies / 101 Dagget Drive / San Jose, CA 95134 / USA
shj@ultra.com ...ames!ultra!shj (408) 922-0100
that's all folks....