From owner-freebsd-current@FreeBSD.ORG  Thu Nov 14 05:45:21 2013
Return-Path: <owner-freebsd-current@FreeBSD.ORG>
Delivered-To: freebsd-current@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id 051B2396;
 Thu, 14 Nov 2013 05:45:21 +0000 (UTC)
Received: from gate.utahime.jp (ipq210.utahime.jp [183.180.29.210])
 by mx1.freebsd.org (Postfix) with ESMTP id C52DE2DBD;
 Thu, 14 Nov 2013 05:45:20 +0000 (UTC)
Received: from eastasia.home.utahime.org (eastasia.home.utahime.org
 [192.168.174.1])
 by gate.utahime.jp (Postfix) with ESMTP id 2347861F9D;
 Thu, 14 Nov 2013 14:45:12 +0900 (JST)
Received: from eastasia.home.utahime.org (localhost [127.0.0.1])
 by localhost-backdoor.home.utahime.org (Postfix) with ESMTP id F01234E642;
 Thu, 14 Nov 2013 14:45:11 +0900 (JST)
Received: from localhost (rolling.home.utahime.org [192.168.174.11])
 by eastasia.home.utahime.org (Postfix) with ESMTPA id 9FB554E637;
 Thu, 14 Nov 2013 14:45:11 +0900 (JST)
Date: Thu, 14 Nov 2013 14:44:35 +0900 (JST)
Message-Id: <20131114.144435.452831467.yasu@utahime.org>
To: re@freebsd.org
Subject: Re: FreeBSD 10 Beta2 /etc/rc.d/named script and /etc/defaults/rc.conf
From: Yasuhiro KIMURA <yasu@utahime.org>
In-Reply-To: <20131112111322.GV90670@droso.dk>
References: <CA+dUSyp5JWskKU7_oMxuTsZekimtRs2A+mEZm=kS-87jNjF9yQ@mail.gmail.com>
 <868B00D6-101A-4B17-995F-A3E2AFE41908@lansing.dk>
 <20131112111322.GV90670@droso.dk>
X-Mailer: Mew version 6.5 on Emacs 24.3 / Mule 6.0 (HANACHIRUSATO)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Virus-Scanned: ClamAV using ClamSMTP
X-Mailman-Approved-At: Thu, 14 Nov 2013 12:19:59 +0000
Cc: freebsd-stable@freebsd.org, stb@lassitu.de, freebsd-current@freebsd.org,
 glebius@freebsd.org, gkontos.mail@gmail.com, des@freebsd.org,
 ozkan.kirik@gmail.com
X-BeenThere: freebsd-current@freebsd.org
X-Mailman-Version: 2.1.16
Precedence: list
List-Id: Discussions about the use of FreeBSD-current
 <freebsd-current.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-current>, 
 <mailto:freebsd-current-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-current/>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Help: <mailto:freebsd-current-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
 <mailto:freebsd-current-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 14 Nov 2013 05:45:21 -0000

From: Erwin Lansing <erwin@FreeBSD.org>
Subject: Re: FreeBSD 10 Beta2 /etc/rc.d/named script and /etc/defaults/rc.conf
Date: Tue, 12 Nov 2013 12:13:23 +0100

> Sorry about the delay, but I did finally update all three dns/bind9*
> ports today.  I have dropped the complicated chroot, and related
> symlinking, logic from the default rc script as I don't think that
> is the right place to implement things.  I would recommend users
> who want the extra security to use jail(8) instead of a mere chroot.
> 
> This change should not affect the installed base of FreeBSD 9.x and
> earlier systems, but new installations there should note that the
> symlink option is no longer turned on by default, but still supported.
> 
> I tested some default cases, but by no means can test every corner case,
> so please let me know how this works out.

Please merge r257694 to stable/10 because remnants of BIND are still left.

Best Regards.

---
Yasuhiro KIMURA