Re: Restarting named service
Take it a step further, if you're using BIND 9 you can use HMAC keys to secure it. > Abd> How can i restart the named service via mod_perl. > Abd> The script will be activated via a web page. > > Abd> My apache is configured to use "User: apache, Group: apache" > > Abd> Is ther any other way except usine "User root" directive in my > Abd> httpd.conf file > > Assuming you're running a somewhat modern version of BIND and you > make the ndc domain socket read/writable via the user/group Apache > is running as, you should be able to restart the daemon without root > privs. > > Not that you still shouldn't be weary of doing something like that, > though. > > b. > -- > /* Bruno Connelly, <[EMAIL PROTECTED]> */ -- Jason Bodnar [EMAIL PROTECTED] http://www.shakabuku.org
Re: Restarting named service
Abd> How can i restart the named service via mod_perl. Abd> The script will be activated via a web page. Abd> My apache is configured to use "User: apache, Group: apache" Abd> Is ther any other way except usine "User root" directive in my Abd> httpd.conf file Assuming you're running a somewhat modern version of BIND and you make the ndc domain socket read/writable via the user/group Apache is running as, you should be able to restart the daemon without root privs. Not that you still shouldn't be weary of doing something like that, though. b. -- /* Bruno Connelly, <[EMAIL PROTECTED]> */
Re: Restarting named service
* Stephen Gray <[EMAIL PROTECTED]> [2002-04-18 15:34]: > On Thu, 18 Apr 2002 [EMAIL PROTECTED] wrote: > > or you would be safer running your name server as named as opposed > > to root. > > > > STEVE > > It should be run as named, but trying to start and stop it as the > named user won't get you very far if you plan on using port 53. :-) Have a (caching?) nameserver on port 53 that forwards everything to localhost:5353, which is running as the web server user and can be restarted randomly. (darren) -- He who has never configured `sendmail.cf' has no courage. He who has configured it more than once has no brain.
Re: Restarting named service
On Thu, 18 Apr 2002 [EMAIL PROTECTED] wrote: > or you would be safer running your name server as named as opposed > to root. > > STEVE It should be run as named, but trying to start and stop it as the named user won't get you very far if you plan on using port 53. :-) === Stephen M. Gray www.frontiermedia.net
Re: Restarting named service
or you would be safer running your name server as named as opposed to root. STEVE > You could use sudo and give the apache user permission to run, as root, > whichever command you use to restart the server. > > Steve > > On Thu, 18 Apr 2002, Abd El-Hameed Mohammed wrote: > >> Hi, >> How can i restart the named service via mod_perl. >> The script will be activated via a web page. >> My apache is configured to use "User: apache, Group: apache" >> >> Is ther any other way except usine "User root" directive in my >> httpd.conf file >> >> Hamid >> > > -- > > === > Stephen M. Gray > www.frontiermedia.net
Re: Restarting named service
You could use sudo and give the apache user permission to run, as root, whichever command you use to restart the server. Steve On Thu, 18 Apr 2002, Abd El-Hameed Mohammed wrote: > Hi, > How can i restart the named service via mod_perl. > The script will be activated via a web page. > My apache is configured to use "User: apache, Group: apache" > > Is ther any other way except usine "User root" directive in my > httpd.conf file > > Hamid > -- === Stephen M. Gray www.frontiermedia.net