From owner-cvs-all Wed Dec 16 22:46:05 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id WAA13553 for cvs-all-outgoing; Wed, 16 Dec 1998 22:46:05 -0800 (PST) (envelope-from owner-cvs-all@FreeBSD.ORG) Received: from flood.ping.uio.no (flood.ping.uio.no [129.240.78.31]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id WAA13548 for ; Wed, 16 Dec 1998 22:46:03 -0800 (PST) (envelope-from des@flood.ping.uio.no) Received: (from des@localhost) by flood.ping.uio.no (8.9.1/8.9.1) id HAA17623; Thu, 17 Dec 1998 07:44:38 +0100 (CET) (envelope-from des) To: Jos Backus Cc: committers@FreeBSD.ORG Subject: Re: Bind sandbox bogosity References: <19981216222430.A93098@hal.mpn.cp.philips.com> From: Dag-Erling Smorgrav Date: 17 Dec 1998 07:44:37 +0100 In-Reply-To: Jos Backus's message of "Wed, 16 Dec 1998 22:24:30 +0100" Message-ID: Lines: 19 X-Mailer: Gnus v5.5/Emacs 19.34 Sender: owner-cvs-all@FreeBSD.ORG Precedence: bulk Jos Backus writes: > On Tue, Dec 15, 1998 at 02:41:17AM +0100, Dag-Erling Smorgrav wrote: > > Solution 1: don't run named as bind:bind (and consequently back out > > revision 1.64 of src/etc/rc.conf and revisions 1.33 and 1.32 of > > src/etc/mtree/BSD.root.dist) > > > > Solution 2: hack bind to temporarily regain privs when HUPed. > > Solution 3: hack update_pid_file()/write_open() in ns_config.c to use > ftruncate() instead of unlink() and subsequently > chown bind:bind /var/run/named.pid. There are more serious problems with running named in a sandbox which your solution doesn't address (e.g. not being able to rescan interfaces). DES -- Dag-Erling Smorgrav - des@flood.ping.uio.no To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message