Date: Tue, 28 Jan 2003 09:52:18 +0000 From: Ceri Davies <setantae@submonkey.net> To: Chuck Swiger <cswiger@mac.com> Cc: freebsd Questions <freebsd-questions@FreeBSD.ORG> Subject: Re: sandboxing named... Message-ID: <20030128095218.GB2628@submonkey.net> In-Reply-To: <3E362707.2090809@mac.com> References: <3E362707.2090809@mac.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, Jan 28, 2003 at 01:45:27AM -0500, Chuck Swiger wrote: > I believe the normal way to chroot named in FreeBSD is something like: > > named_enable="YES" > named_flags="-u bind -g bind -t /etc/namedb -c named.conf" > > ...in /etc/rc.conf. When doing so, the following seems to make life > much better for ndc and the config file: > > mkdir /etc/namedb/etc > mkdir /etc/namedb/var > mkdir /etc/namedb/var/run > ln -s / /etc/namedb/etc/namedb > ln -s /etc/namedb/var/run/ndc /var/run/ndc Please read the section on this in the handbook. Ceri -- The brothers of the fire have brought your fate! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030128095218.GB2628>