Date: Mon, 06 Mar 2023 16:37:23 +0100 From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= <des@des.no> To: "Rodney W. Grimes" <freebsd@gndrsh.dnsmgr.net> Cc: rgrimes@freebsd.org, Cy Schubert <Cy.Schubert@cschubert.com>, Juraj Lutter <otis@freebsd.org>, src-committers@freebsd.org, dev-commits-src-all@freebsd.org, dev-commits-src-main@freebsd.org Subject: Re: git: 1d577bedbae8 - main - unbound: Fix config file path Message-ID: <86mt4psxfw.fsf@ltc.des.no> In-Reply-To: <202303031402.323E2FEN066412@gndrsh.dnsmgr.net> (Rodney W. Grimes's message of "Fri, 3 Mar 2023 06:02:15 -0800 (PST)") References: <202303031402.323E2FEN066412@gndrsh.dnsmgr.net>
next in thread | previous in thread | raw e-mail | index | archive | help
"Rodney W. Grimes" <freebsd@gndrsh.dnsmgr.net> writes: > "Dag-Erling Sm=C3=B8rgrav <des@freebsd.org> writes: > > No. Unbound knows it's chrooted, knows _where_ it's chrooted, and > > adjusts config paths accordingly, cf. e4c53d3bf00a. > We disagree then, rather strongly, about this issue. It should not > know it is chrooted, and it especially should NOT adjust paths > based on that fact. That is a POLA, and it is also hard coding > POLICY into an executable. Almost certainly any path mangling > done because it is chroot is going to break if I chroot it to > some place very different. With all due respect, you're talking out of your ass. > > Also note that the local-unbound configuration is not meant to be > > user-serviceable. > That, again IMHO, is a rather SIC stance to take for a caching > DNS server, especially one as flexable as unbound. The local-unbound service is not a caching DNS server. If that's what you want there are plenty of options in ports, including Unbound. The local-unbound service is a caching resolver which is supposed to Just Work even in the most difficult ciscumstances (roaming laptops, captive portals, DNS-intercepting CPE, etc.) DES --=20 Dag-Erling Sm=C3=B8rgrav - des@des.no
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?86mt4psxfw.fsf>