Costas Magkos said on Fri, Mar 26, 2004 at 07:53:49PM +0200:
> Hi all,
>
> I have set up bind9 in a chroot'ed enviroment. I've just found out that
> I should have added SYSLOGD="-a /var/lib/bind9/dev/log" in
> /etc/init.d/sysklogd in order for bind to be able to log messages after
> it starts u
Costas Magkos said on Fri, Mar 26, 2004 at 07:53:49PM +0200:
> Hi all,
>
> I have set up bind9 in a chroot'ed enviroment. I've just found out that
> I should have added SYSLOGD="-a /var/lib/bind9/dev/log" in
> /etc/init.d/sysklogd in order for bind to be able to log messages after
> it starts u
Dale Amon said on Wed, Jan 28, 2004 at 10:11:16PM +:
> I've finally been annoyed enough by spammer hits on
> my DNS that I've pulled out the BOG for the first time
> in several years.
>
> What I'd like to accomplish is the following:
>
> * allow-query for a specific list of addresses
>
Dale Amon said on Wed, Jan 28, 2004 at 10:11:16PM +:
> I've finally been annoyed enough by spammer hits on
> my DNS that I've pulled out the BOG for the first time
> in several years.
>
> What I'd like to accomplish is the following:
>
> * allow-query for a specific list of addresses
>
Steve Wray said on Fri, Oct 10, 2003 at 01:22:48PM +1300:
> The answer we came up with was to update boxes by rsync
> with --delete
You may want to look at systemimager; it already does this, and it already
knows to exclude the stuff that you don't want to rsync. I've been doing
something like t
Steve Wray said on Fri, Oct 10, 2003 at 01:22:48PM +1300:
> The answer we came up with was to update boxes by rsync
> with --delete
You may want to look at systemimager; it already does this, and it already
knows to exclude the stuff that you don't want to rsync. I've been doing
something like t
Billy Naylor said on Mon, Oct 06, 2003 at 11:04:37AM +1300:
> Hi
>
> It appears that cronjobs running between 2am and 3am sunday morning
> seem to not have been run, i'm in New Zealand which went into summer
> daylight savings over the weekend.
>
> Has anyone else seen this problem?
I think this
Billy Naylor said on Mon, Oct 06, 2003 at 11:04:37AM +1300:
> Hi
>
> It appears that cronjobs running between 2am and 3am sunday morning
> seem to not have been run, i'm in New Zealand which went into summer
> daylight savings over the weekend.
>
> Has anyone else seen this problem?
I think this
Norbert Tretkowski said on Mon, Sep 29, 2003 at 03:34:16PM +0200:
> I've upgraded to bind 9.2.3rc4 because of that new delegation-only
> feature, and I noticed that bind is opening a new udp port.
>
> ,
> | udp0 0 0.0.0.0:43338 0.0.0.0:*
> 2272
Jeff Wiegley said on Mon, Sep 29, 2003 at 06:08:35AM +:
> What is the easiest method (preferrably one that doesn't require sasl)
> to get AUTH setup so that:
> 1) non-STARTTLS connections do NOT offer PLAIN or LOGIN, and
> 2) STARTTLS connections do honor PLAIN or LOGIN?
>
> I'm 100% again
Norbert Tretkowski said on Mon, Sep 29, 2003 at 03:34:16PM +0200:
> I've upgraded to bind 9.2.3rc4 because of that new delegation-only
> feature, and I noticed that bind is opening a new udp port.
>
> ,
> | udp0 0 0.0.0.0:43338 0.0.0.0:*
> 2272
Jeff Wiegley said on Mon, Sep 29, 2003 at 06:08:35AM +:
> What is the easiest method (preferrably one that doesn't require sasl)
> to get AUTH setup so that:
> 1) non-STARTTLS connections do NOT offer PLAIN or LOGIN, and
> 2) STARTTLS connections do honor PLAIN or LOGIN?
>
> I'm 100% again
Bradley Alexander said on Fri, Aug 08, 2003 at 01:36:06AM -0400:
> I tried to set this up again recently on another machine, and found that
> privelege separation breaks this functionality. Does anyone know of a
> workaround to provide similar functionality?
I think you have to turn off PrivSep to
Bradley Alexander said on Fri, Aug 08, 2003 at 01:36:06AM -0400:
> I tried to set this up again recently on another machine, and found that
> privelege separation breaks this functionality. Does anyone know of a
> workaround to provide similar functionality?
I think you have to turn off PrivSep to
Phillip Hofmeister said on Tue, Jun 03, 2003 at 10:02:09AM -0400:
> However, for the most part, chrooting is a valid countermeasure/method
> to compartmentalize. It is a shame that no distribution comes with
> packages natively created with/for chrooting.
I believe that OpenBSD does.
Also, Debi
Phillip Hofmeister said on Tue, Jun 03, 2003 at 10:02:09AM -0400:
> However, for the most part, chrooting is a valid countermeasure/method
> to compartmentalize. It is a shame that no distribution comes with
> packages natively created with/for chrooting.
I believe that OpenBSD does.
Also, Debi
Jarno Gassenbauer said on Fri, May 30, 2003 at 07:56:35PM +0200:
> I'm setting up a chrooted apache. All howto's I found
> _copy_ the required files into the directory that they
> later chroot into.
> Is it OK (read: safe) to use hardlinks and
> "mount --bind" instead?
I don't think so. From wh
Jarno Gassenbauer said on Fri, May 30, 2003 at 07:56:35PM +0200:
> I'm setting up a chrooted apache. All howto's I found
> _copy_ the required files into the directory that they
> later chroot into.
> Is it OK (read: safe) to use hardlinks and
> "mount --bind" instead?
I don't think so. From wh
Keegan Quinn said on Wed, May 14, 2003 at 04:59:52PM -0700:
> Think about a scenario in which this would actually make a difference. If
> someone has cracked any admin's password, on a normal /etc/shadow-based
> system, why couldn't they also crack root? Sure, perhaps one could be
> sniffed, b
begin Stefano Salvi quote on Fri, Jan 03, 2003 at 06:19:53PM +0100:
> There are two chances to do this:
> 1) using parameter --chroot of 'start-stop-daemon'
> 2) using parameter -t of bind
> In both ways I have to use -u parameter of bind to change user, otherwise
> it can't get privileged resour
begin Stefano Salvi quote on Fri, Jan 03, 2003 at 06:19:53PM +0100:
> There are two chances to do this:
> 1) using parameter --chroot of 'start-stop-daemon'
> 2) using parameter -t of bind
> In both ways I have to use -u parameter of bind to change user, otherwise
> it can't get privileged resour
begin Alberto Cortés quote on Wed, Oct 09, 2002 at 10:21:31PM +0200:
> Since I am not living in the US, and some security updates deals with
> cryptographic software, I understand that it will be illegal for me
> downloading these updates from outside of the USA.
I don't believe this is true any
begin Alberto Cortés quote on Wed, Oct 09, 2002 at 10:21:31PM +0200:
> Since I am not living in the US, and some security updates deals with
> cryptographic software, I understand that it will be illegal for me
> downloading these updates from outside of the USA.
I don't believe this is true an
23 matches
Mail list logo
