On Tue, 28 Aug 2012, Ilya Bakulin wrote:
OK, thanks for clarification!
I'm attaching a bit modified patch. What's changed is that now unbound sets the owner group of socket to the group of "username" user (specified in the config file). We at genua found it very useful, because by default the socket is created with root:wheel. And we set chmod 0660 on the socket file. The code that retrieves uid/gid is identical to the code in daemon.c. I have copied it because since this patch is not going to be committed, I want to keep differences to original code as localized as possible :-) This patch is released by genua mbh under BSD license.
I actually really like this patch. We're doing container stuff and we cannot easilly do the whole ssl overhead to talk/reconfigure unbound. Please consider the patch for integration. Paul _______________________________________________ Unbound-users mailing list [email protected] http://unbound.nlnetlabs.nl/mailman/listinfo/unbound-users
