From owner-freebsd-current  Sat Feb 15 17: 9:53 2003
Delivered-To: freebsd-current@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id B838437B401
	for <current@FreeBSD.org>; Sat, 15 Feb 2003 17:09:51 -0800 (PST)
Received: from 12-234-22-23.client.attbi.com (12-234-22-23.client.attbi.com [12.234.22.23])
	by mx1.FreeBSD.org (Postfix) with ESMTP id E365D43FB1
	for <current@FreeBSD.org>; Sat, 15 Feb 2003 17:09:49 -0800 (PST)
	(envelope-from DougB@FreeBSD.org)
Received: from 12-234-22-23.client.attbi.com (lfzcr4azuglitsql@localhost [127.0.0.1])
	by 12-234-22-23.client.attbi.com (8.12.6/8.12.6) with ESMTP id h1G19Sdw063882;
	Sat, 15 Feb 2003 17:09:28 -0800 (PST)
	(envelope-from DougB@FreeBSD.org)
Received: from localhost (doug@localhost)
	by 12-234-22-23.client.attbi.com (8.12.6/8.12.6/Submit) with ESMTP id h1G19Jmh063879;
	Sat, 15 Feb 2003 17:09:23 -0800 (PST)
Date: Sat, 15 Feb 2003 17:09:19 -0800 (PST)
From: Doug Barton <DougB@FreeBSD.org>
To: marius@alchemy.franken.de
Cc: Alexander Leidinger <Alexander@Leidinger.net>,
	current@FreeBSD.org, Mike Makonnen <mtm@identd.net>
Subject: Re: named & chroot & rcNG & devfs
In-Reply-To: <20030211202917.B36455@newtrinity.zeist.de>
Message-ID: <20030215170451.E63308@12-234-22-23.pyvrag.nggov.pbz>
References: <20030211185931.0d37ef82.Alexander@Leidinger.net>
 <20030211202917.B36455@newtrinity.zeist.de>
Organization: http://www.FreeBSD.org/
X-message-flag: Outlook -- Not just for spreading viruses anymore!
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-current@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-current.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-current>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-current>
X-Loop: FreeBSD.ORG

On Tue, 11 Feb 2003 marius@alchemy.franken.de wrote:

> /etc/rc.d/named is quite bogus, especially when it comes to running bind
> chrooted.

Correct. I'm working on an improved method of dealing with this.

> E.g. /dev/null isn't needed by bind8 at all

Incorrect. /dev/null is needed for bind 8. /dev/null and /dev/random are
needed for bind 9. Depending on what you're doing, /dev/random is probably
a good idea for bind 8 as well.

> On the other hand shared libraries are needed (or a port that
> supports linking bind statically...)

cd /usr/ports/net/bind[89]
make clean
make CFLAGS+=-static -DPORT_REPLACES_BASE_BIND8
make install

Doug

-- 

    "The last time France wanted more evidence, it rolled right
        through Paris with a German flag." - David Letterman

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-current" in the body of the message