Date: Thu, 1 Feb 2001 10:29:56 -0800 (PST) From: John Polstra <jdp@polstra.com> To: stable@freebsd.org Cc: khera@kciLink.com Subject: Re: DNS security Message-ID: <200102011829.f11ITuG06484@vashon.polstra.com> In-Reply-To: <14969.38607.142726.115583@onceler.kciLink.com> References: <14969.38607.142726.115583@onceler.kciLink.com>
next in thread | previous in thread | raw e-mail | index | archive | help
In article <14969.38607.142726.115583@onceler.kciLink.com>,
Vivek Khera <khera@kciLink.com> wrote:
> 2) bind tries to write temporary files into the CWD. Unfortunately,
> /etc/namedb is root:wheel and not writable by the bind process
> owner. There doesn't seem to be a parameter to bind to tell it
> where to write those files, but there is an environment variable,
> DSTKEYPATH, that can be used.
>
> The problem I have is how to make FreeBSD 4.2-STABLE pass that
> environment variable to bind during boot. There doesn't seem to be a
> good way to do that with the stock startup scripts. For now, I'm just
> going to start bind in /etc/rc.local and turn it off from rc.conf.
Try putting this in your rc.conf file:
named_program="env DSTKEYPATH=/var/tmp named"
I haven't tried it, but it ought to work. You can probably even
omit the word "env".
John
--
John Polstra jdp@polstra.com
John D. Polstra & Co., Inc. Seattle, Washington USA
"Disappointment is a good sign of basic intelligence." -- Chögyam Trungpa
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200102011829.f11ITuG06484>