Date: Tue, 28 Jan 2003 01:45:27 -0500 From: Chuck Swiger <cswiger@mac.com> To: freebsd Questions <freebsd-questions@FreeBSD.ORG> Subject: sandboxing named... Message-ID: <3E362707.2090809@mac.com>
next in thread | raw e-mail | index | archive | help
I believe the normal way to chroot named in FreeBSD is something like: named_enable="YES" named_flags="-u bind -g bind -t /etc/namedb -c named.conf" ...in /etc/rc.conf. When doing so, the following seems to make life much better for ndc and the config file: mkdir /etc/namedb/etc mkdir /etc/namedb/var mkdir /etc/namedb/var/run ln -s / /etc/namedb/etc/namedb ln -s /etc/namedb/var/run/ndc /var/run/ndc -Chuck PS: I'm not exactly sure whether this is a suggestion, a question to verify that I'm not doing something silly, or some combination. :-) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3E362707.2090809>