From owner-freebsd-stable  Thu Feb  1  9:33:26 2001
Delivered-To: freebsd-stable@freebsd.org
Received: from digital.csudsu.com (digital.csudsu.com [209.249.57.102])
	by hub.freebsd.org (Postfix) with ESMTP id 86E2B37B65D
	for <stable@FreeBSD.ORG>; Thu,  1 Feb 2001 09:33:09 -0800 (PST)
Received: by digital.csudsu.com (Postfix, from userid 1000)
	id E8A2522E01; Thu,  1 Feb 2001 09:35:14 -0800 (PST)
Received: from localhost (localhost [127.0.0.1])
	by digital.csudsu.com (Postfix) with ESMTP
	id CB52C1F001; Thu,  1 Feb 2001 09:35:14 -0800 (PST)
Date: Thu, 1 Feb 2001 09:35:14 -0800 (PST)
From: Stefan Molnar <stefan@csudsu.com>
To: Gordon Tetlow <gordont@bluemtn.net>
Cc: Vivek Khera <khera@kciLink.com>, <stable@FreeBSD.ORG>
Subject: Re: chrooting bind
In-Reply-To: <Pine.BSF.4.31.0102010924030.17707-100000@sdmail0.sd.bmarts.com>
Message-ID: <Pine.BSF.4.31.0102010934430.4036-100000@digital.csudsu.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-stable@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG


you can pass -t on the command line, then you have to put /dev
entries like a chrooted ftp.

On Thu, 1 Feb 2001, Gordon Tetlow wrote:

> On Thu, 1 Feb 2001, Vivek Khera wrote:
>
> > Pretty much the only thing you have to do to run bind in chroot is to
> > set the named_flags="-g bind -u bind" flags in /etc/rc.conf.  That's
> > my understanding of it based on the FreeBSD docs.
>
> Correct me if I'm wrong, but this is only a sandbox (run as a different
> user) while this person wants to set up a true chroot environment.
> Personally, I think that the former is adequete as nothing else on the box
> is owned by the bind user.
>
> -gordon
>
>
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-stable" in the body of the message
>
>



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message