--
Stacey Roberts B.Sc. (HONS) Computer Science
Network Systems Engineer
---BeginMessage---
Hi Lars,
Thanks for getting back to me.
I'm just following the handbook here., and as such, I have moved
named.conf and the zone files I created into /etc/namedb/s (now renamed
to
On Sun, Jul 14, 2002 at 11:30:42AM +0100, Stacey Roberts wrote:
(sigh!) There's no mention of moving the named binary into the sandbox
dir in *any* of the books I've got in front of me.
You don't *have* to do that, although it will do no harm. I tell you
this from very recent experience, as
Hi,
Not to appear to be targeting you, but can you tell me if the
procedure in either of the books., (note that FBSD Unleashed does *not*
mention moving anything to the sandbox dir) is indeed *supposed* to
work?
I am hoping to implement as standardized a set-up as possible - for
future
Hi,
Have you considered the jail(8) command for securing BIND? It's even
more secure than the normal chrooted sandbox.
I had a hard time finding the right documentation on this as well, so
I wrote this little howto:
http://www.xs4all.nl/~rubeng/files/bindjail.html
hope this helps
Ruben
On
Hi Ruben,
Thanks for the kind reply.
I had a look at the link you provided, and I am inmpressed with the
detail mentioned in there.
However, I am in the (un) enviable position of attempting to convince
others that with the BSD variants, there is at least some conforming to
standardised
If you're reading this link for sandboxing BIND this is as standard as
it gets.
http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/dns.html
From what I've read from you it appears you haven't done everything
these steps tell you to do.
To Unsubscribe: send mail to [EMAIL PROTECTED]
On Sunday 14 July 2002 19:13, Steve Wingate wrote:
If you're reading this link for sandboxing BIND this is as standard
as it gets.
http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/dns.html
From what I've read from you it appears you haven't done everything
these steps tell you to
