From owner-freebsd-doc Tue Jan 16 4:56:55 2001 Delivered-To: freebsd-doc@freebsd.org Received: from spammie.svbug.com (unknown [198.79.110.2]) by hub.freebsd.org (Postfix) with ESMTP id 1B55D37B400 for ; Tue, 16 Jan 2001 04:56:36 -0800 (PST) Received: from spammie.svbug.com (localhost.mozie.org [127.0.0.1]) by spammie.svbug.com (8.9.3/8.9.3) with ESMTP id EAA01942; Tue, 16 Jan 2001 04:55:51 -0800 (PST) (envelope-from jessem@spammie.svbug.com) Message-Id: <200101161255.EAA01942@spammie.svbug.com> Date: Tue, 16 Jan 2001 04:55:49 -0800 (PST) From: opentrax@email.com Reply-To: opentrax@email.com Subject: Re: docs/24364: I don't think so! To: dima@unixfreak.org Cc: freebsd-doc@FreeBSD.ORG In-Reply-To: <200101160450.f0G4o2E75582@freefall.freebsd.org> MIME-Version: 1.0 Content-Type: TEXT/plain; charset=us-ascii Sender: owner-freebsd-doc@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On 15 Jan, Dima Dorfman wrote: > The following reply was made to PR docs/24364; it has been noted by GNATS. > > From: Dima Dorfman > To: toor@nisser.com > Cc: FreeBSD-gnats-submit@freebsd.org > Subject: Re: docs/24364: I don't think so! > Date: Mon, 15 Jan 2001 20:48:52 -0800 > > > > > >Number: 24364 > > >Category: docs > > >Synopsis: wrong description or rc.conf > > > > "FreeBSD now defaults to running ntalkd, comsat, and finger in a sandbox. Ano > > ther program which may be a > > candidate for running in a sandbox is named(8). The default rc.conf includes > > the arguments necessary to run > > named in a sandbox in a commented-out form. Depending on whether you are inst > > alling a new system or upgrading" > > > > No it doesn't. O'Reilly's does, though. > > It does, but it isn't very clear about it: > > > # > # named. It may be possible to run named in a sandbox, man security for > # details. > # > named_enable="NO" # Run named, the DNS server (or NO). > named_program="named" # path to named, if you want a different one. > named_flags="" # Flags for named > #named_flags="-u bind -g bind" # Flags for named > > > The last line is an example of how to run it in a sandbox. > Actually the "named_flags" are now in /etc/default/rc.conf, so the documentation is incorrect in that we don't say where "default rc" is. That is, one could assume 'default rc' to mean the 'rc' that ships with the system. That is how I read it. However, it *now* means the 'rc' in '/etc/'default' It's a very minor doc'ing error, I should have caught it. (Good work. Roelof. :-)) Who wants to submit a fix? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-doc" in the body of the message