Date: Mon, 1 Jun 1998 11:51:12 +0200 From: Ollivier Robert <roberto@keltia.freenix.fr> To: freebsd-security@FreeBSD.ORG Subject: Re: /usr/sbin/named Message-ID: <19980601115112.A10806@keltia.freenix.fr> In-Reply-To: <Pine.LNX.3.95.iB1.0.980531235510.7174A-100000@alpha.sea-to-sky.net>; from Steve Reid on Sun, May 31, 1998 at 11:56:23PM -0700 References: <Pine.LNX.3.95.iB1.0.980531235510.7174A-100000@alpha.sea-to-sky.net>
next in thread | previous in thread | raw e-mail | index | archive | help
According to Steve Reid: > Also... Is there any reason for this daemon to run as root, other than > binding to port 53? Would it be possible and reasonable to patch it to > give up root after binding to the port? Zone transferts are done by connecting tcp(53) to tcp(53). Name resolution between servers are using 53 too so you'll need to bind several times on that port. After loading the zone, you'll also need to write it on disk... -- Ollivier ROBERT -=- FreeBSD: The Power to Serve! -=- roberto@keltia.freenix.fr FreeBSD keltia.freenix.fr 3.0-CURRENT #60: Fri May 15 21:04:22 CEST 1998 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19980601115112.A10806>