From owner-freebsd-questions Sun Jul 14 5:19: 7 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BE88837B400 for ; Sun, 14 Jul 2002 05:19:02 -0700 (PDT) Received: from smtp.infracaninophile.co.uk (happy-idiot-talk.infracaninophile.co.uk [81.2.69.218]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7441143E65 for ; Sun, 14 Jul 2002 05:19:01 -0700 (PDT) (envelope-from m.seaman@infracaninophile.co.uk) Received: from happy-idiot-talk.infracaninophile.co.uk (localhost.infracaninophile.co.uk [IPv6:::1]) by smtp.infracaninophile.co.uk (8.12.5/8.12.5) with ESMTP id g6ECIwbo026217; Sun, 14 Jul 2002 13:18:58 +0100 (BST) (envelope-from matthew@happy-idiot-talk.infracaninophile.co.uk) Received: (from matthew@localhost) by happy-idiot-talk.infracaninophile.co.uk (8.12.5/8.12.5/Submit) id g6ECIq9n026216; Sun, 14 Jul 2002 13:18:52 +0100 (BST) Date: Sun, 14 Jul 2002 13:18:52 +0100 From: Matthew Seaman To: Stacey Roberts Cc: FreeBSD-Questions Subject: Re: Cannot start bind in samdbox? Message-ID: <20020714121852.GD25158@happy-idiot-talk.infracaninophi> References: <1026640255.97896.9.camel@Demon.vickiandstacey.com> <20020714103149.GB25158@happy-idiot-talk.infracaninophi> <1026643580.97896.25.camel@Demon.vickiandstacey.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable In-Reply-To: <1026643580.97896.25.camel@Demon.vickiandstacey.com> User-Agent: Mutt/1.5.1i Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Sun, Jul 14, 2002 at 11:46:18AM +0100, Stacey Roberts wrote: > Hi Matthew, > Thanks for getting back to me. >=20 > Forgive me for asking this, but seeing that your procedure is so > blantantly different to what is suggested in *both* books, is something > actually wrong in those book? I'm afraid I've never seen `FreeBSD Unleashed'. What I told you was what I just did based on my reading of the various man pages and experimenting to see what worked --- I make no claim as to authority. What I did is certainly not the only way to do this sort of thing. Neither is it necessarily the best way to do it: it is just the way I did it. While I do try to give accurate and helpful information, I would hope that no-one reading one of my e-mails would just implement exactly what I say willy-nilly without first checking in the manuals and making sure that they understand exactly what those commands do. > I mean.., what I'm being told to do in both the Handbook as well as FBSD > Unleashed., is nothing like what you have suggested here., I'm only > trying to have things as secure - but standardized as much as I can on > the machine. Although my instructions do look quite different to what the handbook says, those commands will have an analogous effect to the handbook ones in most important respects. I can tell you after the fact that my instructions happen to coincide pretty well with what's given in the O'Reilly "DNS and BIND" book 4th Ed although their example is based on RedHat Linux and needs a bit of interpretation to make it suitable for FreeBSD. However I do see now that what I wrote was incomplete. I've ommitted entirely the questions of named-xfer and localtime, so I shall certainly be modifying my own setup. > Thanks for the time, I'd appreciate you (and others') view on what *is* > supposed to be the standard procedure for running bind in a sandbox. I'd guess that the authors of the software and the FreeBSD committer(s) that maintain the software in the FreeBSD source tree are the highest authority. After that, the Handbook is pretty good as far as FreeBSD things go. Even so, what they say is a guide rather than official dictat. Cheers, Matthew --=20 Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks Savill Way Tel: +44 1628 476614 Marlow Fax: +44 0870 0522645 Bucks., SL7 1TH UK To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message