Pdnsd
Local DNS Cache with pdnsd
installation
on debian, should be as simple as aptitude install pdnsd
your /etc/resolv.conf
should contain only
nameserver 127.0.0.1
debian installs pdnsd with a dedicated user account. upstream packages
previously ran the daemon as nobody
, but using such a common account
created a vulnerability as an exploitation of any other process running as
nobody
could allow an attacker to poison your cache.
dhclient
resolvconf
If your system uses resolvconf
, your /etc/resolv.conf
will probably warn
you that any customizations to the file will be overwritten. In that case you
need to update /etc/resolvconf/resolv.conf.d/base
Useful commands
forget a cache entry
$ sudo pdnsd-ctl record rt.ylayali.net delete
blocking domains
create a neg (negative cache record) in your config file
forget any currently cached value as above & restart the service
It may be worthwhile to check your current cache for any subdomains you also want to delete
finally, restart pdnsd
Handy one-liner for annoying domains that create hundreds of records