From owner-cvs-all Thu Aug 23 11: 0:17 2001 Delivered-To: cvs-all@freebsd.org Received: from earth.backplane.com (earth-nat-cw.backplane.com [208.161.114.67]) by hub.freebsd.org (Postfix) with ESMTP id A6BF137B405; Thu, 23 Aug 2001 11:00:06 -0700 (PDT) (envelope-from dillon@earth.backplane.com) Received: (from dillon@localhost) by earth.backplane.com (8.11.4/8.11.2) id f7NHxTH88202; Thu, 23 Aug 2001 10:59:29 -0700 (PDT) (envelope-from dillon) Date: Thu, 23 Aug 2001 10:59:29 -0700 (PDT) From: Matt Dillon Message-Id: <200108231759.f7NHxTH88202@earth.backplane.com> To: Chris Dillon Cc: "Andrey A. Chernov" , Brian Somers , Jun Kuriyama , , , Subject: Re: cvs commit: src/etc/defaults rc.conf src/etc/mtree BSD.var.dist src/etc/namedb named.conf References: Sender: owner-cvs-all@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG :Just thought of something... Correct me if I'm wrong, but named only :needs to bind to an interface that it will receive queries on, right? :How many cases (a handful?) will we have where the dynamic interface :that BIND will not be able to attach to in a sandbox is the one where :queries will be coming in on? BIND can still make outgoing queries on :any interface wether it is bound to it or not, right? I think that :would significantly lessen the number of people we think this is going :to affect. : :-- : Chris Dillon - cdillon@wolves.k12.mo.us - cdillon@inter-linc.net Yes, you are absolutely correct. If the 'query-source address * port 53;' option is not set, then named can certainly make outgoing (recursive) queries on any interface. The real issue with dynamic interfaces is with incoming queries - if named is acting as a server. This was a good opint to bring up, Chris! -Matt To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message