Re: chroot/etc/named/ directory?

Wed, 13 Feb 2013 11:20:09 -0800 


On 02/13/2013 01:44 PM, Lightner, Jeff wrote:

Haven't done it on RHEL/CentOS 6.x yet but in RHEL5 with the bind-chroot 
installed I've always had:
/var/named/chroot as the jail for BIND.
/var/named/chroot/etc = Location of global config files such as named.conf
/var/named/chroot/var/named = Location of the zone files.


These I am use to and have used them for years.


I don't see a /var/named/chroot/etc/named in RHEL5 but then again that is based 
on BIND 9.3.  RHEL6 is almost certainly based on a higher upstream version.   
Since CentOS is built from RHEL source it would have that higher version as 
well.



Yes. I am going from Centos (RHEL) 5.5 to 6.3, so the new directory just 
has me wondering. I found it also as /etc/named/ so it is part of their 
base bind rpm, but no documentation on what they expected to be place 
there. Just here is something new and I want to know why so that I am 
not supprised.



-----Original Message-----
From: bind-users-bounces+jlightner=water....@lists.isc.org 
[mailto:bind-users-bounces+jlightner=water....@lists.isc.org] On Behalf Of Mike 
Hoskins (michoski)
Sent: Wednesday, February 13, 2013 12:44 PM
To: bind-users@lists.isc.org
Subject: Re: chroot/etc/named/ directory?

-----Original Message-----

From: Robert Moskowitz <r...@htt-consult.com>
Date: Wednesday, February 13, 2013 10:53 AM
To: "bind-users@lists.isc.org" <bind-users@lists.isc.org>
Subject: chroot/etc/named/ directory?


I am upgrading my server from bind-9.3.6 via Centos 5.5 to 9.8.2 in
Centos 6.3.

I have and will run bind chrooted and on my test setup I noticed a 'new'
subdirectory in the chroot tree:

/var/named/chroot/etc/named/

I cannot find any documentation as what is indended to be placed in
this subdirectory.  my includes for named.conf?

I am assuming the pki subdirectory is for DNSSEC related files, but I
have not found any documentation indicating so.  But then I have not
plowed through DNSSEC documention in depth yet.

If you installed bind*-chroot, it will populate the /var/named/chroot hierarchy.  It's not strictly 
required (though I would suggest it), but if you intend to run BIND chrooted 
"/var/named/chroot" is essentially "/".
You'll have to place the usual things BIND needs to operate under that 
directory -- configs, zones, etc.  Assuming this came from the chroot RPM, 
you'll already have other essential pieces for chroot such as your 
null/random/zero devices.  Since you mention CentOS, you'll likely also want to 
pay attention to things like ROOTDIR in /etc/sysconfig/named.

Having said all that, you might search the archives (SRPMS have been provided by 
community members) or other sources for a newer BIND while you're at it...9.8.2 isn't 
ancient, but also not technically "up to date"
now.  I am personally waiting for 9.9.3 to leave beta, but 9.8.4-P1 probably 
makes sense for you today.  This won't affect your chroot setup, just something 
worth considering since you're upgrading.

_______________________________________________



_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users






















					Reply via email to