OR just make the file immutable if it's so critical to you. -- Sent from the Delta quadrant using Borg technology! Nux! www.nux.ro ----- Original Message ----- > From: "Jon LaBadie" <jcu@xxxxxxxxxx> > To: "CentOS mailing list" <centos@xxxxxxxxxx> > Sent: Wednesday, 12 April, 2017 07:16:22 > Subject: Re: Network Manager / CentOS 7 / local unbound > On Tue, Apr 11, 2017 at 01:40:21AM -0700, Alice Wonder wrote: >> Hello list - >> >> http://unix.stackexchange.com/questions/90035/how-to-set-dns-resolver-in-fedora-using-network-manager >> >> That says it works for CentOS 5 and I *suspect* the methods there (3 listed) >> would work, but what is the best way with NetworkManager to set it up to use >> the localhost for DNS ? >> >> I'm paranoid about DNS spoofing and really prefer to have a local instance >> of DNSSEC enforcing unbound running on my CentOS 7 virtual machines (e.g. >> linode) >> >> Currently I just use a cron job that runs once a minute to over-write was it >> is /etc/resolv.conf so they don't use the DHCP assigned nameservers, but >> that does leave a short window every time the network is restarted. > > Besides the suggested configs, if still worried you could set up > an inotify watch on /etc/resolv.conf to let you know, or take > action, whenever it changes. > > jon > -- > Jon H. LaBadie jon@xxxxxxxxxx > 11226 South Shore Rd. (703) 787-0688 (H) > Reston, VA 20190 (703) 935-6720 (C) > _______________________________________________ > CentOS mailing list > CentOS@xxxxxxxxxx > https://lists.centos.org/mailman/listinfo/centos _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx https://lists.centos.org/mailman/listinfo/centos