Date: Wed, 29 Aug 2001 09:51:46 +0100 (BST) From: Joshua Goodall <joshua@roughtrade.net> To: Giorgos Keramidas <keramida@ceid.upatras.gr> Cc: <cvs-committers@FreeBSD.ORG>, <cvs-all@FreeBSD.ORG> Subject: Re: cvs commit: src/etc/defaults rc.conf src/etc/mtree BSD.var.dist src/etc/namedb named.conf Message-ID: <Pine.LNX.4.33.0108290946460.23691-100000@elm.phenome.org> In-Reply-To: <20010823202530.A2280@hades.hell.gr>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, 23 Aug 2001, Giorgos Keramidas wrote: > I don't agree to running named in a sandbox by default, but can we, at > least, have a note in UPDATING? Please? Breaking parts of -stable configurations is expected during upgrade. pam.conf/sshd springs immediately to mind. In the past I have generally expected mergemaster to tweak my systems, and surely that is highly applicable here? An MFC should (must?) be accompanied by mergemaster gaining the ability to fix up sandbox structures and configuration. Personally I can only applaud further security measures, especially with something so widespread, and with such an insecure history, as BIND. Joshua To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.LNX.4.33.0108290946460.23691-100000>