Date: Wed, 17 Jan 2001 08:46:01 -0800 (PST) From: opentrax@email.com To: csxbcs@comp.leeds.ac.uk Cc: dima@unixfreak.org, toor@nisser.com, freebsd-doc@FreeBSD.ORG Subject: Re: docs/24364: I don't think so! Message-ID: <200101171646.IAA03876@spammie.svbug.com> In-Reply-To: <20010116205930.D5867@comp.leeds.ac.uk>
next in thread | previous in thread | raw e-mail | index | archive | help
On 16 Jan, Ben Smithurst wrote: > Dima Dorfman wrote: > >> It does, but it isn't very clear about it: >> >> <quote rc.conf> >> # >> # named. It may be possible to run named in a sandbox, man security for >> # details. >> # >> named_enable="NO" # Run named, the DNS server (or NO). >> named_program="named" # path to named, if you want a different one. >> named_flags="" # Flags for named >> #named_flags="-u bind -g bind" # Flags for named >> <unquote> >> >> The last line is an example of how to run it in a sandbox. > > Hmm, would this make it any clearer, do you think? > > named_enable="NO" # Run named, the DNS server (or NO). > named_program="named" # path to named, if you want a different one. > named_flags="" # Flags for named > #named_flags="-u bind -g bind" # Flags for named, if running in a sandbox. > > If not, please suggest something which would. :-) > Maybe, #named_flags="-u bind -g bind" # Flags for named, part of a sandbox. This way we suggest it is one component, not that it creates a sandbox. Needing Coffee, Jessem. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-doc" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200101171646.IAA03876>