NSCD TTL and DNS TTL, which one is stronger?

domain-name-system ttl

Solution 1:

It's important to note that nscd acts as a cache for the resolver system in general, not specifically for DNS lookups but all means of name lookups.
As a result of this, nscd has historically had issues dealing with the DNS TTLs.

Versions of glibc nscd from before 2004-09-15 did not deal properly with DNS TTLs.
When that was resolved, glibc nscd still only dealt with DNS TTLs if the application called getaddrinfo; if an application called the obsolete gethostbyname functions the DNS TTL values were still ignored.

To my understanding the glibc maintainers finally caved in glibc 2.8 (2008) and made the behavior consistent across all the name lookup methods. Current versions should use the DNS TTLs regardless of how the lookup was initiated.

See also:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=335476
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=669304
https://sourceware.org/ml/libc-alpha/2008-04/msg00050.html
https://sourceware.org/bugzilla/show_bug.cgi?id=4428
http://udrepper.livejournal.com/16362.html

Related

Is the TCP checksum over the payload?
Saving MySQL databases without mysqldump
VMWare serial connection between two vm hosts
What is a quicker DNS Setup?
No control panel equivalent of exim /etc/mailips file for configuring IPs for each domain's outgoing mail?
PostgreSQL v9.3.4 memory usage Issue on Windows Server 2008 R2
"yum update" error. How to handle this?
Linux command to remove directories with white spaces
How to change root CA certificate?
Samba4 & Active Directory Kerberos [Cannot contact any KDC for realm 'INTERNAL.CORP.COM' while getting initial credentials
Apache with SPDY enabled show HTTP/1.1 and not 2.0
trace ftp file data in wireshark