Date: Thu, 23 Aug 2001 20:25:30 +0300 From: Giorgos Keramidas <keramida@ceid.upatras.gr> To: Jun Kuriyama <kuriyama@imgsrc.co.jp> Cc: cvs-committers@FreeBSD.ORG, cvs-all@FreeBSD.ORG Subject: Re: cvs commit: src/etc/defaults rc.conf src/etc/mtree BSD.var.dist src/etc/namedb named.conf Message-ID: <20010823202530.A2280@hades.hell.gr> In-Reply-To: <7my9oax1f0.wl@waterblue.imgsrc.co.jp>; from kuriyama@imgsrc.co.jp on Fri, Aug 24, 2001 at 12:04:51AM %2B0900 References: <ache@nagual.pp.ru> <20010823174457.A27360@nagual.pp.ru> <200108231413.f7NEDvg71094@hak.lan.Awfulhak.org> <20010823185515.A28168@nagual.pp.ru> <7my9oax1f0.wl@waterblue.imgsrc.co.jp>
next in thread | previous in thread | raw e-mail | index | archive | help
From: Jun Kuriyama <kuriyama@imgsrc.co.jp> Subject: Re: cvs commit: src/etc/defaults rc.conf src/etc/mtree BSD.var.dist src/etc/namedb named.conf Date: Fri, Aug 24, 2001 at 12:04:51AM +0900 > At Thu, 23 Aug 2001 18:55:15 +0400, > Andrey A. Chernov <ache@nagual.pp.ru> wrote: > > > If named allows root compromise, better fix named. > > Of course. But I like safety net like this. IMHO users who want to > use root privilege for named should override it by named_flags="" on > their /etc/rc.conf. This changes the behavior of rc.conf that some might have, which depends on named_flags being set to "" by /etc/defaults/rc.conf. I don't agree to running named in a sandbox by default, but can we, at least, have a note in UPDATING? Please? -giorgos To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010823202530.A2280>