From owner-freebsd-net@FreeBSD.ORG Fri May 21 04:17:04 2004 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7DF7B16A4CE; Fri, 21 May 2004 04:17:04 -0700 (PDT) Received: from smtp.infracaninophile.co.uk (happy-idiot-talk.infracaninophile.co.uk [81.2.69.218]) by mx1.FreeBSD.org (Postfix) with ESMTP id B0B4243D2D; Fri, 21 May 2004 04:17:03 -0700 (PDT) (envelope-from m.seaman@infracaninophile.co.uk) Received: from happy-idiot-talk.infracaninophile.co.uk (localhost.infracaninophile.co.uk [IPv6:::1])i4LBGiEn085763 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Fri, 21 May 2004 12:16:44 +0100 (BST) (envelope-from matthew@happy-idiot-talk.infracaninophile.co.uk) Received: (from matthew@localhost)id i4LBGeee085758; Fri, 21 May 2004 12:16:40 +0100 (BST) (envelope-from matthew) Date: Fri, 21 May 2004 12:16:40 +0100 From: Matthew Seaman To: "Mitch (bitblock)" Message-ID: <20040521111640.GB31695@happy-idiot-talk.infracaninophile.co.uk> Mail-Followup-To: Matthew Seaman , "Mitch (bitblock)" , Muhammad Reza , freebsd-net@freebsd.org, freebsd-questions@freebsd.org References: <40AD8D44.5020508@mra.co.id> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="SkvwRMAIpAhPCcCJ" Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.5.6i X-Virus-Scanned: clamd / ClamAV version devel-20040504, clamav-milter version 0.70u X-Virus-Status: Clean X-Spam-Status: No, hits=-4.8 required=5.0 tests=AWL,BAYES_00 autolearn=ham version=2.63 X-Spam-Checker-Version: SpamAssassin 2.63 (2004-01-11) on happy-idiot-talk.infracaninophile.co.uk cc: Muhammad Reza cc: freebsd-questions@freebsd.org cc: freebsd-net@freebsd.org Subject: Re: named in sandbox X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 21 May 2004 11:17:04 -0000 --SkvwRMAIpAhPCcCJ Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable > > -----Original Message----- > > From: owner-freebsd-net@freebsd.org > > [mailto:owner-freebsd-net@freebsd.org]On Behalf Of Muhammad Reza > > I running named in sandbox as a secondary name server with > > FreeBSD-5.1.p17, > > Named log always complain: > > named-xfer exited with signal 6 and slave zone expired for every zone > > transfer. On Thu, May 20, 2004 at 11:02:46PM -0700, Mitch (bitblock) wrote: > You need to compile named-xfer as statically linked, or move it's dependa= nt > libraries into the chroot. Or switch to the BIND9 port which doesn't have a separate named-xfer executable -- the functionality is all rolled into the named binary, and that you don't have to copy into the chroot area in order to run chrooted. Look at this article for some pointers: http://othyro.freeshell.org/bind.html However, remember that's written netbsd-centrically, and you'll have to adapt the instructions for use under FreeBSD -- use ports instead of pkgsrc, and you'll need to investigate what to do to make devfs(8) create the requited device nodes under the chroot, rather than using mknod. Cheers, Matthew --=20 Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks Savill Way PGP: http://www.infracaninophile.co.uk/pgpkey Marlow Tel: +44 1628 476614 Bucks., SL7 1TH UK --SkvwRMAIpAhPCcCJ Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (FreeBSD) iD8DBQFAreUYiD657aJF7eIRAqkqAJ9LUGk4S6szRs0biWMjaTgXPYmKnwCeLEVP 39ju5ox3uQd/wb+EBhR/G+Q= =FLFk -----END PGP SIGNATURE----- --SkvwRMAIpAhPCcCJ--