From owner-freebsd-security  Thu Feb  1  9: 3:20 2001
Delivered-To: freebsd-security@freebsd.org
Received: from bluerose.windmoon.nu (c255152-a.plstn1.sfba.home.com [24.176.132.48])
	by hub.freebsd.org (Postfix) with ESMTP id BE5AD37B69B
	for <freebsd-security@FreeBSD.ORG>; Thu,  1 Feb 2001 09:03:02 -0800 (PST)
Received: from localhost (fengyue@localhost)
	by bluerose.windmoon.nu (8.11.1/8.10.2) with ESMTP id f11H2tD42146;
	Thu, 1 Feb 2001 09:02:55 -0800 (PST)
Date: Thu, 1 Feb 2001 09:02:55 -0800 (PST)
From: FengYue <fengyue@bluerose.windmoon.nu>
To: Rossen Raykov <rraykov@sageian.com>
Cc: freebsd-security@FreeBSD.ORG
Subject: Re: Ronning named in chroot env
In-Reply-To: <03aa01c08c67$7f7c3320$4c00000a@sage>
Message-ID: <Pine.BSF.4.10.10102010900440.42133-100000@bluerose.windmoon.nu>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org


On Thu, 1 Feb 2001, Rossen Raykov wrote:

> Hi,
> 
> In case someone is interested in running named in chrooted environment on
> FreeBSD, below is my experience how this can be done.
> There are example settings for /etc/rc.conf allso.

Actually, all I did was:

named -t /etc/namedb -u bind -g bind named.conf

that seems to work just fine.  Just make sure /etc/namedb/s and files
under it are all owned by bind:bind.  I'm using the named compiled from
/usr/src/usr.sbin/named.  




To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message