From owner-freebsd-current@FreeBSD.ORG Tue Sep 28 13:38:27 2004 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2C42316A4CE for ; Tue, 28 Sep 2004 13:38:27 +0000 (GMT) Received: from sccrmhc13.comcast.net (sccrmhc13.comcast.net [204.127.202.64]) by mx1.FreeBSD.org (Postfix) with ESMTP id AED5243D55 for ; Tue, 28 Sep 2004 13:38:26 +0000 (GMT) (envelope-from DougB@freebsd.org) Received: from lap (c-24-130-110-32.we.client2.attbi.com[24.130.110.32]) by comcast.net (sccrmhc13) with SMTP id <2004092813382501600b78ooe>; Tue, 28 Sep 2004 13:38:26 +0000 Date: Tue, 28 Sep 2004 06:38:24 -0700 (PDT) From: Doug Barton To: Makoto Matsushita In-Reply-To: <20040928214106F.matusita@jp.FreeBSD.org> Message-ID: <20040928063428.O5729@ync.qbhto.arg> References: <20040928025635.Q5094@ync.qbhto.arg> <20040928214106F.matusita@jp.FreeBSD.org> Organization: http://www.FreeBSD.org/ X-message-flag: Outlook -- Not just for spreading viruses anymore! MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed cc: current@FreeBSD.org Subject: Re: HEADS UP: named now runs chroot'ed by default X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 28 Sep 2004 13:38:27 -0000 On Tue, 28 Sep 2004, Makoto Matsushita wrote: > > DougB> Comments and suggestions are welcome, but please try to keep the > DougB> bikeshedding about specific bits down to an absolute minimum. > > One question: what do you think about named(8)'s syslog messages? I think they are very important. :) > It seems that current configuration doesn't consider that -- chrooted > named(8)'s syslog messages go to nowhere. I need to amend the instructions to say: /etc/rc.d/named stop /etc/rd.d/syslogd stop ... /etc/rc.d/syslogd start /etc/rc.d/named start The syslogd script already has the logic to create the socket if named shows up chrooted in rc.conf. Thanks for the reminder, Doug -- This .signature sanitized for your protection