-
-
Notifications
You must be signed in to change notification settings - Fork 5.2k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Built-in nscd into the docker image (a better dns caching service) (#…
- Loading branch information
Showing
5 changed files
with
192 additions
and
7 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,90 @@ | ||
# | ||
# /etc/nscd.conf | ||
# | ||
# An example Name Service Cache config file. This file is needed by nscd. | ||
# | ||
# Legal entries are: | ||
# | ||
# logfile <file> | ||
# debug-level <level> | ||
# threads <initial #threads to use> | ||
# max-threads <maximum #threads to use> | ||
# server-user <user to run server as instead of root> | ||
# server-user is ignored if nscd is started with -S parameters | ||
# stat-user <user who is allowed to request statistics> | ||
# reload-count unlimited|<number> | ||
# paranoia <yes|no> | ||
# restart-interval <time in seconds> | ||
# | ||
# enable-cache <service> <yes|no> | ||
# positive-time-to-live <service> <time in seconds> | ||
# negative-time-to-live <service> <time in seconds> | ||
# suggested-size <service> <prime number> | ||
# check-files <service> <yes|no> | ||
# persistent <service> <yes|no> | ||
# shared <service> <yes|no> | ||
# max-db-size <service> <number bytes> | ||
# auto-propagate <service> <yes|no> | ||
# | ||
# Currently supported cache names (services): passwd, group, hosts, services | ||
# | ||
|
||
|
||
# logfile /var/log/nscd.log | ||
# threads 4 | ||
# max-threads 32 | ||
# server-user node | ||
# stat-user somebody | ||
debug-level 0 | ||
# reload-count 5 | ||
paranoia no | ||
# restart-interval 3600 | ||
|
||
enable-cache passwd no | ||
positive-time-to-live passwd 600 | ||
negative-time-to-live passwd 20 | ||
suggested-size passwd 211 | ||
check-files passwd yes | ||
persistent passwd yes | ||
shared passwd yes | ||
max-db-size passwd 33554432 | ||
auto-propagate passwd yes | ||
|
||
enable-cache group no | ||
positive-time-to-live group 3600 | ||
negative-time-to-live group 60 | ||
suggested-size group 211 | ||
check-files group yes | ||
persistent group yes | ||
shared group yes | ||
max-db-size group 33554432 | ||
auto-propagate group yes | ||
|
||
enable-cache hosts yes | ||
positive-time-to-live hosts 3600 | ||
negative-time-to-live hosts 20 | ||
suggested-size hosts 211 | ||
check-files hosts yes | ||
persistent hosts yes | ||
# Set shared to "no" to display stats in `nscd -g` | ||
# Read more: https://stackoverflow.com/questions/40429245/nscdcentos7curl-0-dns-cache-hit-rate | ||
shared hosts no | ||
max-db-size hosts 33554432 | ||
|
||
enable-cache services no | ||
positive-time-to-live services 28800 | ||
negative-time-to-live services 20 | ||
suggested-size services 211 | ||
check-files services yes | ||
persistent services yes | ||
shared services yes | ||
max-db-size services 33554432 | ||
|
||
enable-cache netgroup no | ||
positive-time-to-live netgroup 28800 | ||
negative-time-to-live netgroup 20 | ||
suggested-size netgroup 211 | ||
check-files netgroup yes | ||
persistent netgroup yes | ||
shared netgroup yes | ||
max-db-size netgroup 33554432 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,31 @@ | ||
# | ||
# This file MUST be edited with the 'visudo' command as root. | ||
# | ||
# Please consider adding local content in /etc/sudoers.d/ instead of | ||
# directly modifying this file. | ||
# | ||
# See the man page for details on how to write a sudoers file. | ||
# | ||
Defaults env_reset | ||
Defaults mail_badpass | ||
Defaults secure_path="/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin" | ||
|
||
# Host alias specification | ||
|
||
# User alias specification | ||
|
||
# Cmnd alias specification | ||
|
||
# User privilege specification | ||
root ALL=(ALL:ALL) ALL | ||
|
||
# Allow members of group sudo to execute any command | ||
%sudo ALL=(ALL:ALL) ALL | ||
|
||
# See sudoers(5) for more information on "#include" directives: | ||
|
||
#includedir /etc/sudoers.d | ||
|
||
# Allow `node` to control service (mainly for nscd) | ||
node ALL=(root) NOPASSWD: /usr/sbin/nscdservice | ||
node ALL=(root) NOPASSWD: /usr/sbin/service |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters