chroot-jail ?? whats this
Ralf Hildebrandt
R.Hildebrandt at tu-bs.de
Sun Apr 2 10:48:30 UTC 2000
On Sat, Apr 01, 2000 at 08:34:59AM +0000, Lincoln Yeoh wrote:
> Yes, but would it still be safer to make copies? Or there's nothing to be
> gained from the security standpoint?
I'd prefer links. That keeps the files in sync.
(I only got one link, though: /etc/named.conf -> /chroot/etc/named.conf)
> Is making sure that the named process owner has no write permissions to all
> files and is not the owner of any of the files good enough?
Does that make sense? named must be able to write out slave zones, named.pid
etc.
More information about the bind-users
mailing list