Date: Mon, 28 Aug 2006 14:40:16 -0700 From: Julian Elischer <julian@elischer.org> To: John-Mark Gurney <gurney_j@resnet.uoregon.edu> Cc: FreeBSD Net <freebsd-net@FreeBSD.org>, Doug Barton <dougb@FreeBSD.org> Subject: Re: possible patch for implementing split DNS Message-ID: <44F362C0.6080309@elischer.org> In-Reply-To: <20060828195339.GF37035@funkthat.com> References: <44EF6E18.6090905@elischer.org> <44F3429F.6050204@FreeBSD.org> <44F344FA.1000408@elischer.org> <20060828195339.GF37035@funkthat.com>
next in thread | previous in thread | raw e-mail | index | archive | help
John-Mark Gurney wrote: >Julian Elischer wrote this message on Mon, Aug 28, 2006 at 12:33 -0700: > > >>ALmost all other services (e.g. inetd,natd,sshd, etc.etc.) allow you to >>specify a different config file >>so that you can supply different services to theinside and outside but >>it all falls appart >>if they still are forced to use the same DNS server and can not provide >>a differentiated service >>for that reason. >> >> > >Why not put one of the two in side a jail (I think someone else mentioned >this), or chroot'd environment where it can pick up a different resolv.conf? > > > The very mail you quoted says that I can not put it inside a jail. a chroot is slightly less problematical except that they do need to share filesystems. To make it fully work I need to have /etc nearly all shared along with a lot more but I need to have different /etc/resolv.conf so, Why NOT make this tunable from the environment? it does not do it for SUID processes and there are already environment varables that influence name lookup.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?44F362C0.6080309>