Date: Tue, 23 Apr 2002 10:43:43 +1000 From: Mark.Andrews@isc.org To: Roger Marquis <marquis@roble.com> Cc: security@FreeBSD.ORG Subject: Re: DNS Question Message-ID: <200204230043.g3N0hhx21422@drugs.dv.isc.org> In-Reply-To: Your message of "Mon, 22 Apr 2002 17:25:32 MST." <20020422172141.D64443-100000@roble.com>
next in thread | previous in thread | raw e-mail | index | archive | help
> Len Conrad <LConrad@Go2France.com> wrote:
> >bind9 runs quite nicely and easily in a chroot.
>
> Can it communicate with syslogd when chrooted?
Yes. If it can't then it is the vendor's syslog implementation
that is broken. Syslog and chroot are standard parts of the
OS and they should work together. If they don't blame the
OS not the application that tries to use them.
Same with threads and set{e}{u,g}id.
> Can it accpet zone
> transfers and write the pid-file assuming a writable directory
> under $CHROOTHOME?
Yes. It always could. BIND 8 required a more complete chroot
envirionment as it exec'd named-xfer.
> What happens when you send the daemon a -HUP?
It re-reads named.conf and acts on the changes there.
> These are all things we've had problems with under bind8. Be great
> if they are fixed.
>
> --
> Roger Marquis
> Roble Systems Consulting
> http://www.roble.com/
>
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-security" in the body of the message
--
Mark Andrews, Internet Software Consortium
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: Mark.Andrews@isc.org
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200204230043.g3N0hhx21422>