From owner-freebsd-current@FreeBSD.ORG  Tue Sep 28 13:31:48 2004
Return-Path: <owner-freebsd-current@FreeBSD.ORG>
Delivered-To: freebsd-current@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id 6659616A4CE; Tue, 28 Sep 2004 13:31:48 +0000 (GMT)
Received: from sccrmhc11.comcast.net (sccrmhc11.comcast.net [204.127.202.55])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id 08EAA43D46; Tue, 28 Sep 2004 13:31:48 +0000 (GMT)
	(envelope-from DougB@freebsd.org)
Received: from lap (c-24-130-110-32.we.client2.attbi.com[24.130.110.32])
          by comcast.net (sccrmhc11) with SMTP
          id <20040928133145011006fe2he>; Tue, 28 Sep 2004 13:31:47 +0000
Date: Tue, 28 Sep 2004 06:31:44 -0700 (PDT)
From: Doug Barton <DougB@FreeBSD.org>
To: Hajimu UMEMOTO <ume@FreeBSD.org>
In-Reply-To: <ygeacvali41.wl%ume@FreeBSD.org>
Message-ID: <20040928062649.K5729@ync.qbhto.arg>
References: <20040928025635.Q5094@ync.qbhto.arg>
	<ygeacvali41.wl%ume@FreeBSD.org>
Organization: http://www.FreeBSD.org/
X-message-flag: Outlook -- Not just for spreading viruses anymore!
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
cc: freebsd-current@FreeBSD.org
Subject: Re: HEADS UP: named now runs chroot'ed by default
X-BeenThere: freebsd-current@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Discussions about the use of FreeBSD-current
	<freebsd-current.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
	<mailto:freebsd-current-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-current>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Help: <mailto:freebsd-current-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
	<mailto:freebsd-current-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 28 Sep 2004 13:31:48 -0000

On Tue, 28 Sep 2004, Hajimu UMEMOTO wrote:

> Hi,
>
>>>>>> On Tue, 28 Sep 2004 03:03:46 -0700 (PDT)
>>>>>> Doug Barton <DougB@FreeBSD.org> said:
>
> DougB> For those that don't have a named configuration, all you should have to
> DougB> do is 'rm -r /etc/namedb' and you'll be fine.
>
> Where should we store rndc.conf, now?

Well if you follow the instructions in UPDATING, you'll end up with 
/etc/namedb as a symlink to the chroot directory in /var/named/.

That said, I highly reocmmend that you drop rndc.conf altogether, and 
use the rndc.key format instead. This allows you to get rid of the key 
statements in named.conf as well, and either manage the rndc keys 
seperately (if you need to) or just ignore it and let rc.d/named create 
one for you randomly.

Doug

-- 

     This .signature sanitized for your protection