From owner-freebsd-questions@FreeBSD.ORG Fri Sep 24 03:40:40 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C204A16A4CE for ; Fri, 24 Sep 2004 03:40:40 +0000 (GMT) Received: from smtp03.mrf.mail.rcn.net (smtp03.mrf.mail.rcn.net [207.172.4.62]) by mx1.FreeBSD.org (Postfix) with ESMTP id 92DD743D1F for ; Fri, 24 Sep 2004 03:40:40 +0000 (GMT) (envelope-from roberthuff@rcn.com) Received: from 209-6-197-67.c3-0.smr-ubr1.sbo-smr.ma.cable.rcn.com ([209.6.197.67] helo=jerusalem.litteratus.org.litteratus.org) by smtp03.mrf.mail.rcn.net with esmtp (Exim 3.35 #7) id 1CAgwp-00012i-00 for questions@freebsd.org; Thu, 23 Sep 2004 23:40:39 -0400 From: Robert Huff MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Message-ID: <16723.38380.9533.249086@jerusalem.litteratus.org> Date: Thu, 23 Sep 2004 23:35:08 -0400 To: questions@freebsd.org In-Reply-To: <20040923212837.GA876@happy-idiot-talk.infracaninophile.co.uk> References: <16723.14911.322906.824692@jerusalem.litteratus.org> <20040923212837.GA876@happy-idiot-talk.infracaninophile.co.uk> X-Mailer: VM 7.17 under 21.5 (beta16) "celeriac" XEmacs Lucid Subject: Re: Speaking of Bind: installworld changed directory owner X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 24 Sep 2004 03:40:40 -0000 Matthew Seaman writes: > Why do you think /etc/namedb should be owned by the bind user? Because I read - not sure where, might have been the O'Reilly book - a) the first step in securing bind is running as !root (i.e. user "bind") and b) the bind directory needs to be owned by that user. Now maybe I'm mis-remembering, or mis-read in the first place ... but I'm not pulling this out of thin air. Robert Huff