Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 10 Aug 2004 13:46:11 -0700 (PDT)
From:      "Joshua Lewis" <jmlewis@dslextreme.com>
To:        "Michael Sharp" <ms@probsd.org>
Cc:        freebsd-questions@freebsd.org
Subject:   re: Replacing Bind8x with Bind9
Message-ID:  <8274a13a46a1ee24a1aee4a.20040810134611.wzyrjvf@www.dslextreme.com>
In-Reply-To: <2400.192.168.1.1.1092125643.squirrel@192.168.1.1>
References:  <2400.192.168.1.1.1092125643.squirrel@192.168.1.1>

next in thread | previous in thread | raw e-mail | index | archive | help
> Definetly consider chrooting or jailing BIND

Would you be able to point me at a doc that explains what jailing and or
chrooting a program does. Something that shows how and when it is used. I
have seen specific examples for individual programs. However I would like
to learn how and why it works and understand how to do it for all of my
programs. Especially what the difference is between jailing and chrooting


Thank you,
Joshua Lewis



Michael Sharp
> read the /usr/ports/dns/bind9 Makefile and use the
> 'PORT_REPLACES_BASE_BIND9'
> option to make.
>
> make PORT_REPLACES_BASE_BIND9=yes install clean
>
> In rc.conf
> ----------
> named_enable="YES"
> named_program="/usr/local/sbin/named"
> named_flags="-c /usr/local/etc/namedb/named.conf -u bind"
>
>
>
> and you can also put NO_BIND= true in /etc/make.conf so that base BIND
> isn't build when you make world.
>
> Definetly consider chrooting or jailing BIND
>
> Michael
>
>



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?8274a13a46a1ee24a1aee4a.20040810134611.wzyrjvf>