Date: Tue, 17 Oct 2000 07:52:33 -0500 From: David Drum <david@mu.org> To: freebsd-bugs@FreeBSD.org Subject: Re: conf/22038: Default location of named.pid file assumes named is running as root Message-ID: <20001017075233.B46425@elvis.mu.org> In-Reply-To: <200010170840.BAA89963@freefall.freebsd.org>; from des@ofug.org on Tue, Oct 17, 2000 at 01:40:02AM -0700 References: <200010170840.BAA89963@freefall.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Quoth Dag-Erling Smorgrav: > david@mu.org writes: > > > Move the pid file into a subdirectory that can be chowned to bind: > > This does not help if named runs chrooted, which it should. > > (I have patches to make it run in a jail, BTW) I believe this comment is outside the scope of the current request. Chrooting bind is one step further down the road to security. Please see my next email for more comments. Regards, David Drum david@mu.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20001017075233.B46425>