Date: Thu, 14 Nov 2013 14:44:35 +0900 (JST) From: Yasuhiro KIMURA <yasu@utahime.org> To: re@freebsd.org Cc: freebsd-stable@freebsd.org, stb@lassitu.de, freebsd-current@freebsd.org, glebius@freebsd.org, gkontos.mail@gmail.com, des@freebsd.org, ozkan.kirik@gmail.com Subject: Re: FreeBSD 10 Beta2 /etc/rc.d/named script and /etc/defaults/rc.conf Message-ID: <20131114.144435.452831467.yasu@utahime.org> In-Reply-To: <20131112111322.GV90670@droso.dk> References: <CA%2BdUSyp5JWskKU7_oMxuTsZekimtRs2A%2BmEZm=kS-87jNjF9yQ@mail.gmail.com> <868B00D6-101A-4B17-995F-A3E2AFE41908@lansing.dk> <20131112111322.GV90670@droso.dk>
next in thread | previous in thread | raw e-mail | index | archive | help
From: Erwin Lansing <erwin@FreeBSD.org> Subject: Re: FreeBSD 10 Beta2 /etc/rc.d/named script and /etc/defaults/rc.conf Date: Tue, 12 Nov 2013 12:13:23 +0100 > Sorry about the delay, but I did finally update all three dns/bind9* > ports today. I have dropped the complicated chroot, and related > symlinking, logic from the default rc script as I don't think that > is the right place to implement things. I would recommend users > who want the extra security to use jail(8) instead of a mere chroot. > > This change should not affect the installed base of FreeBSD 9.x and > earlier systems, but new installations there should note that the > symlink option is no longer turned on by default, but still supported. > > I tested some default cases, but by no means can test every corner case, > so please let me know how this works out. Please merge r257694 to stable/10 because remnants of BIND are still left. Best Regards. --- Yasuhiro KIMURA
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20131114.144435.452831467.yasu>