Re: [blfs-support] Introduction and request for information on Bind uid to 0: Operation not permitted

2019-10-18 Thread Michael Shell via blfs-support 
On Thu, 17 Oct 2019 05:45:10 +
EscuelitaViva via blfs-support  wrote:

> New to the list and will be helping out as best I can to support my
> favorite project, LFS. I'm a grey beard, a throw back from the Commodore,
> Atari, Timex Sinclair, Trash 80 days. Anyone program Fortran here?
> Never mind ;P

Welcome! :) FWIW, I still own a working TRS-80 Model I system - complete
with expansion interface (48K RAM, two disk drives, etc.). It was given to me
by my high school after they upgraded to Macs. My own personal system back
in those days was a TRS-80 Color Computer.

> But at the rate things are changing, not just in our field, but in the
> world in general ... going to need a miracle to pull off supporting
> the exponential growth of these systems in the future.

This is something people don't appreciate yet - that complexity carries
a cost of its own. In the recent (October) issue of IEEE Spectrum, there
is an article about how traffic apps are *causing* traffic jams because
they fail to take into consideration how their use/advice will alter
existing traffic patterns. Also, they don't consider factors such as
the (un)suitability of certain roads, when schools let out, etc.

The coming end of Moore's Law will slow the change - systems will advance
linearly rather than exponentially. I believe that there will then be a
greater emphasis on quality and reliability than is the case today.

One of the many things I like about LFS is that, to me, in some respects,
complexity is actually *reduced*, at least in the long term. There
certainly is a steep learning curve, but the Unix system evolves slowly
and deliberately - when changes happen, there usually is some good
engineering reason for doing so. Contrast this with how unwanted
changes are often quickly forced down the throats of users of
Microsoft products, etc.


   Cheers,

   Mike Shell
 
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-support
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-support] Introduction and request for information on Bind uid to 0: Operation not permitted

2019-10-17 Thread Bruce Dubbs via blfs-support 

On 10/17/19 12:45 AM, EscuelitaViva via blfs-support wrote:

Hello BLFS crew,

New to the list and will be helping out as best I can to support my 
favorite project, LFS.
I'm a grey beard, a throw back from the Commodore, Atari, Timex 
Sinclair, Trash 80 days.

Anyone program Fortran here? Never mind ;P


Fortran II, Fortran IV, Fortran 66, or Fortran 77 ?


Seriously impressive how you all have managed to keep up with the updates!
But at the rate things are changing, not just in our field, but in the 
world in general...going to need a miracle to pull off supporting the 
exponential growth of these systems in the future.


Well here is another piece of the puzzle to dissect:
Bind 9.14.5 is dropping this into sys.log, but still runs fine:

named[459]: listening on IPv4 interface enp0s3, 192.168.56.2#53
named[459]: unable to set effective uid to 0: Operation not permitted
named[459]: generating session key for dynamic DNS
named[459]: unable to set effective uid to 0: Operation not permitted
named[459]: sizing zone task pool based on 2 zones

Found this link 
 
describing named wanting to revert back to UID 0, root for some reason 
even though it is in chroot at this time.
You can disable caps --disable-linux-caps but at the cost of security, 
and no one knows what that cost is?!?

This page also discusses the issue:
https://gitlab.isc.org/isc-projects/bind9/issues/1042

Anyone with some info, please let me know.
Thanks so much.
And again, what a fantastic project! Glad to be here.


bind has now released version 9.14.7, but I've not checked that yet. 
See if that fixes the problem.


  -- Bruce
--
http://lists.linuxfromscratch.org/listinfo/blfs-support
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page