Author: glen Date: Tue May 16 11:37:07 2006 GMT
Module: PLDWWW URL: http://www.pld-linux.org/Vserver
---- Log message:
update from Marcin Winkler about bind
---- Page affected: Vserver
---- Diffs:
================================================================
=== bind won't install because of a mknod problem ===
bind requires some special device nodes inside it's chroot jail located in
''/var/lib/named''. Vserver security does not allow device node creation so you
will have to install the package specifying
{{{--excludepath=/var/lib/named/dev}}} and then create devices {{{/dev/null}}}
and {{{/dev/random}}} from outside of the vserver context.
+
+ UPDATE: vpoldek doesn't allow command line option
+ {{{
+ --excludepath=/var/lib/named/dev and in poldek.conf
+ # poldek: unrecognized option `--excludepath=/var/lib/named/dev'
+ }}}
+ Alternative method to this is write in poldek.conf
+ {{{
+ rpmdef = _netsharedpath /dev:/var/lib/named/dev
+ }}}
+ or in {{{/vservers/test/etc/rpm/macros}}}
+ {{{
+ %_netsharedpath /dev:/var/lib/named/dev
+ }}}
To run bind you will have to change one more thing. PLD version of bind uses
chroot for extra security and vserver security removes all special kernel
capabilities. To allow chrooting inside your DNS vserver, use the following:
_______________________________________________
pld-cvs-commit mailing list
[email protected]
http://lists.pld-linux.org/mailman/listinfo/pld-cvs-commit
