From owner-cvs-all  Thu Aug 23  9:44:56 2001
Delivered-To: cvs-all@freebsd.org
Received: from Awfulhak.org (gw.Awfulhak.org [217.204.245.18])
	by hub.freebsd.org (Postfix) with ESMTP
	id 06D6437B403; Thu, 23 Aug 2001 09:44:37 -0700 (PDT)
	(envelope-from brian@Awfulhak.org)
Received: from hak.lan.Awfulhak.org (root@hak.lan.Awfulhak.org [fec0::1:12])
	by Awfulhak.org (8.11.5/8.11.5) with ESMTP id f7NGiiv37654;
	Thu, 23 Aug 2001 17:44:46 +0100 (BST)
	(envelope-from brian@Awfulhak.org)
Received: from hak.lan.Awfulhak.org (brian@localhost [127.0.0.1])
	by hak.lan.Awfulhak.org (8.11.4/8.11.4) with ESMTP id f7NGiZg74042;
	Thu, 23 Aug 2001 17:44:35 +0100 (BST)
	(envelope-from brian@hak.lan.Awfulhak.org)
Message-Id: <200108231644.f7NGiZg74042@hak.lan.Awfulhak.org>
X-Mailer: exmh version 2.5 07/13/2001 with nmh-1.0.4
To: Charlie Root <root@aldan.algebra.com>
Cc: Brian Somers <brian@Awfulhak.org>,
	"Andrey A. Chernov" <ache@nagual.pp.ru>,
	Jun Kuriyama <kuriyama@FreeBSD.org>, cvs-committers@FreeBSD.org,
	cvs-all@FreeBSD.org, brian@freebsd-services.com,
	brian@freebsd-services.com
Subject: Re: cvs commit: src/etc/defaults rc.conf src/etc/mtree BSD.var.dist src/etc/namedb named.conf 
In-Reply-To: Message from Charlie Root <root@aldan.algebra.com> 
   of "Thu, 23 Aug 2001 12:32:14 EDT." <200108231632.f7NGWEo55019@aldan.algebra.com> 
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Date: Thu, 23 Aug 2001 17:44:35 +0100
From: Brian Somers <brian@Awfulhak.org>
Sender: owner-cvs-all@FreeBSD.ORG
Precedence: bulk
List-ID: <cvs-all.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20cvs-all>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20cvs-all>
X-Loop: FreeBSD.ORG

> > > >   Change pidfile location to /var/run/named/pid.
> 
> Yes! I'd also suggest moving the sandbox into /var/db/named ...
> 
> > > Is it  discussed or I miss  something? We already have  an option to
> > > run it  in bind sandbox,  but as non-default option.  Some functions
> > > not works in bind sandbox, I don't remember exactly at this moment.
> > 
> > named won't  be able  to listen  on interface  addresses that  are not
> > configured when  named is invoked. This  can break name services  on a
> > dialup server quite badly.
> 
> How about  putting the  named.restart (if  rc.conf says  named_enable is
> YES) into ppp-linkup by default?  The named_enable=YES should also be an
> indication not to mess with /etc/resolv.conf by default, BTW :-)

The commands in ppp.linkup are run as the uid of the user that ran 
ppp, not necessarily uid 0.

> 	-mi

-- 
Brian <brian@freebsd-services.com>                <brian@Awfulhak.org>
      http://www.freebsd-services.com/        <brian@[uk.]FreeBSD.org>
Don't _EVER_ lose your sense of humour !      <brian@[uk.]OpenBSD.org>



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message