From 22c3a681da7ec5c84e8822eb325c647a8e89942a Mon Sep 17 00:00:00 2001
From: Jakub Hrozek <jhrozek@redhat.com>
Date: Thu, 10 Feb 2011 21:47:45 +0100
Subject: Fine tuning DNS options

Add pointer to self to /etc/hosts to avoid chicken/egg problems when
restarting DNS.

On servers set both dns_lookup_realm and dns_lookup_kdc to false so we don't
attempt to do any resolving. Leave it to true on clients.

Set rdns to false on both server and client.

https://fedorahosted.org/freeipa/ticket/931
---
 install/share/krb5.conf.template | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

(limited to 'install/share')

diff --git a/install/share/krb5.conf.template b/install/share/krb5.conf.template
index 9cf4ee84d..93d88dbb2 100644
--- a/install/share/krb5.conf.template
+++ b/install/share/krb5.conf.template
@@ -5,8 +5,9 @@
 
 [libdefaults]
  default_realm = $REALM
- dns_lookup_realm = true
- dns_lookup_kdc = true
+ dns_lookup_realm = false
+ dns_lookup_kdc = false
+ rdns = false
  ticket_lifetime = 24h
  forwardable = yes
 
-- 
cgit