From owner-freebsd-arch Tue Jun 18 6: 0:33 2002 Delivered-To: freebsd-arch@freebsd.org Received: from mta6.snfc21.pbi.net (mta6.snfc21.pbi.net [206.13.28.240]) by hub.freebsd.org (Postfix) with ESMTP id 23ADE37B40D for ; Tue, 18 Jun 2002 06:00:14 -0700 (PDT) Received: from kokeb.ambesa.net ([64.166.85.39]) by mta6.snfc21.pbi.net (iPlanet Messaging Server 5.1 (built May 7 2001)) with ESMTP id <0GXW00IK2K49EY@mta6.snfc21.pbi.net> for arch@FreeBSD.ORG; Tue, 18 Jun 2002 06:00:09 -0700 (PDT) Received: from kokeb.ambesa.net (tanstaafl@localhost [127.0.0.1]) by kokeb.ambesa.net (8.12.3/8.12.3) with ESMTP id g5ID5O8S008916; Tue, 18 Jun 2002 06:05:24 -0700 (PDT envelope-from mikem@kokeb.ambesa.net) Received: (from mikem@localhost) by kokeb.ambesa.net (8.12.3/8.12.3/Submit) id g5ID5O4W008915; Tue, 18 Jun 2002 06:05:24 -0700 (PDT envelope-from mikem) Date: Tue, 18 Jun 2002 06:05:24 -0700 From: Mike Makonnen Subject: Re: rcNG rollout in -current In-reply-to: <7838.1024402933@axl.seasidesoftware.co.za> To: Sheldon Hearn Cc: arch@FreeBSD.ORG Message-id: <20020618060524.0e1f1238.makonnen@pacbell.net> MIME-version: 1.0 X-Mailer: Sylpheed version 0.7.0 (GTK+ 1.2.10; i386--freebsd5.0) Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT References: <20020618050431.66169292.makonnen@pacbell.net> <7838.1024402933@axl.seasidesoftware.co.za> Sender: owner-freebsd-arch@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Tue, 18 Jun 2002 14:22:13 +0200 Sheldon Hearn wrote: > > > > So it looks like the named_chrootdir idea needs a bit more thought. > > > Unfortunately, I can't do the thinking right now. > > > > yeah, a sandboxed bind server seems to do that to people. :-) > > I will make it less icky one of these days. > > It's a pretty small wart, given the size of the toad, and it doesn't > take us back from where we were before. I wouldn't let this discourage > me if I were you. In fact, if I were you, I'd feel very pleased with my > contribution of effort. :-) Thanks. I wasn't complaining. Even though it is better than what we previously had it could still use some improvement. Which reminds me, could you put a note in UPDATING that: - setting rcng_named on means you have to remove "-u bind -g bind" from named_flags - while the boot scripts will start named jailed correctly it's up to the administrator to make sure that configuration and zone files are placed correctly - By default /var/run/named.pid will be symlinked to /var/run/named.pid and syslog will open a socket in /var/run Thanks, Mike. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-arch" in the body of the message