[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: bind-chroot in F11



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


> > This is surely a packing error since the bind-chroot package should
> > install the proper chrooted directory structure and install the
> correct
> > basic files in them including a basic named.conf under
> > /var/named/chroot/etc/
> > There appears not even to be a root cert file in the chroot.

> Well, IMHO, the packaging error is that we have bind-chroot at all.
> Time
> to ask its maintainer whether it shouldn't be choked after all these
> years it was not needed.

There are a LOT of production dns servers running bind in a chroot jail
via the bind-chroot package. Of course the selinux lockdown might have
much the same effect - I have not looked at that in detail.



-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (GNU/Linux)

iD8DBQFKPVBfL6j7milTFsERAovAAJ0a+05cOCOKSYGbViEx0IsTaZM3cACfbAFd
gglfGKmXmmVJHgMdAn7fhCo=
=+jdR
-----END PGP SIGNATURE-----



[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]