Adam Fabian wrote:
On Tue, Jun 28, 2005 at 11:42:57AM -0500, Rene Rivera wrote:
ability to multi-mount filesystems. Instead of using the chroot
sledgehammer.
The version integrated with OpenBSD is probably better, particularly
on OpenBSD.
Definitely. And I do prefer to have some fs access restriction, instead
of none, even if that means using chroot.
If you can't get around the chroot problem with symbolic
links, or chrooting into /export, I believe it's pretty easy to compile
BIND from the distributor's sources on OpenBSD.
Well I've tried using a symlink to no avail. Specifically I tried "ln -s
/export/config/named /var/named/config" and then using "/config" in
named.conf. I've done some searches for docs on chroot and symlinks. The
only interesting find is this package:
chrootuid-1.3.tgz - control chroot and su access rights by application
Are there docs on how a symlink in a chroot should work? I'd gladly RTFM :-)
As for chrooting to /export, it has two cons: a) I'd have to recreate
the /var/named structure, and b) It's about as insecure as chrooting to "/".
--
-- Grafik - Don't Assume Anything
-- Redshift Software, Inc. - http://redshift-software.com
-- rrivera/acm.org - grafik/redshift-software.com
-- 102708583/icq - grafikrobot/aim - Grafik/jabber.org
