From owner-cvs-all Thu Aug 23 14:46:20 2001 Delivered-To: cvs-all@freebsd.org Received: from Awfulhak.org (gw.Awfulhak.org [217.204.245.18]) by hub.freebsd.org (Postfix) with ESMTP id 7F9E837B40A; Thu, 23 Aug 2001 14:46:06 -0700 (PDT) (envelope-from brian@Awfulhak.org) Received: from hak.lan.Awfulhak.org (root@hak.lan.Awfulhak.org [fec0::1:12]) by Awfulhak.org (8.11.5/8.11.5) with ESMTP id f7NLkDv39444; Thu, 23 Aug 2001 22:46:13 +0100 (BST) (envelope-from brian@Awfulhak.org) Received: from hak.lan.Awfulhak.org (brian@localhost [127.0.0.1]) by hak.lan.Awfulhak.org (8.11.4/8.11.4) with ESMTP id f7NLk1g88405; Thu, 23 Aug 2001 22:46:01 +0100 (BST) (envelope-from brian@hak.lan.Awfulhak.org) Message-Id: <200108232146.f7NLk1g88405@hak.lan.Awfulhak.org> X-Mailer: exmh version 2.5 07/13/2001 with nmh-1.0.4 To: Mike Silbersack Cc: Brian Somers , Matt Dillon , Chris Dillon , "Andrey A. Chernov" , Jun Kuriyama , cvs-committers@FreeBSD.ORG, cvs-all@FreeBSD.ORG, brian@freebsd-services.com, brian@freebsd-services.com Subject: Re: cvs commit: src/etc/defaults rc.conf src/etc/mtree BSD.var.dist src/etc/namedb named.conf In-Reply-To: Message from Mike Silbersack of "Thu, 23 Aug 2001 17:18:32 EDT." Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Thu, 23 Aug 2001 22:46:00 +0100 From: Brian Somers Sender: owner-cvs-all@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG > > On Thu, 23 Aug 2001, Brian Somers wrote: > > > > 2. rc.conf is amended with some fancy shell scripting that mails root and > > > says "You're not using sandboxing! Read this url and figure it out, it > > > will be the default in 4.5" > > > > So anybody that wants named to run as root so that it can bind to > > addresses that are configured after named has started gets to suffer > > these emails ? > > > > Are you saying that *you* know better than the person running a given > > machine ? I think not. > > I think that anyone running BIND as root deserves to know the risk they're > putting themselves in. Look at BIND 8's history and tell me that it's a > completely safe application to run as root. When protection against being > rooted is this easy, people should be using it. And how do you know that person is running bind8 ? Are you going to interrogate $named_program now too ? > The case of running a dns server on dynamic interfaces is irrelevant. > Such a server would be useless anyway, since nobody could find it. Maybe > there's one or two people who have some really weird situation which > requires such a setup, but I'm sure that's a really small amount of > people. I'd say this is fairly common: query-source address * port 53; Running a ppp server and offering the local interface address as a nameserver may be common too - I don't know and neither do you. But this is a dumb strawman. You should not be trying to dictate policy over configurations you know nothing about. Sending email to people saying that they should be running named as non-root is just ludicrous. > Clearly it's not going to be easy to set the defaults to use bind:bind > without breaking some configurations. However, this is something that > _should_ be done. This (damage) has already been done in -current. I am saying that doing this in -stable -- breaking peoples existing configurations -- is an exercise that will make the FreeBSD project look like idiots, and I won't subscribe to that idea. Why are people so eager to shove these changes down the throats of the unsuspecting masses running -stable ? Is everyone trying to scare away our user base ? > This would be a much more productive conversation if > you could put forward some ideas on how to make the transition as painless > as possible. If I subscribed to the idea, I would suggest a way forward. The painless option is to back out what's been done so far and for people to think about and test what they're going to do before doing it. > Mike "Silby" Silbersack -- Brian http://www.freebsd-services.com/ Don't _EVER_ lose your sense of humour ! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message