Re: BIND in a chroot() environment

2000-12-08 Thread Greg Wright
*** REPLY SEPARATOR *** On 1/12/00 at 23:12 Charles Galpin wrote: Hi I have found several excellent discussions about this, and even a script that helps set this up (http://sourceforge.net/projects/ctk-dns-chroot/). However, I'm wondering if there are any BIND rpms

Re: BIND in a chroot() environment

2000-12-08 Thread Greg Wright
*** REPLY SEPARATOR *** On 6/12/00 at 12:28 almquist paul wrote: Hi I have found several excellent discussions about this, and even a script that helps set this up (http://sourceforge.net/projects/ctk-dns-chroot/). However, I'm wondering if there are any BIND rpms

Re: BIND in a chroot() environment

2000-12-07 Thread Charles Galpin
On Thu, 7 Dec 2000, Leonard den Ottolander wrote: Hi Paul, Put DNS on a dedicated Linux box. It is automatically isolated from other services and users without the added steps to setup chroot. Comments? Seems a little overdone for your 2 pc home network :-). you

Re: BIND in a chroot() environment

2000-12-06 Thread almquist paul
Hi I have found several excellent discussions about this, and even a script that helps set this up (http://sourceforge.net/projects/ctk-dns-chroot/). However, I'm wondering if there are any BIND rpms available that have this setup already, since I'd prefer it for the maintainance.

Re: BIND in a chroot() environment

2000-12-06 Thread rpjday
On Wed, 6 Dec 2000, almquist paul wrote: Hi I have found several excellent discussions about this, and even a script that helps set this up (http://sourceforge.net/projects/ctk-dns-chroot/). However, I'm wondering if there are any BIND rpms available that have this setup already,

Re: BIND in a chroot() environment

2000-12-06 Thread almquist paul
On Wed, 6 Dec 2000, almquist paul wrote: Indirectly related to the issue of running bind in chrooted environment I read an interesting comment on the subject in "Linux DNS Server Administration" by Craig Hunt. On page 254 he states his opinion on the subject. To paraphrase: Put

Re: BIND in a chroot() environment

2000-12-06 Thread Matthew Galgoci
I suppose the difference is that if someone breaks into a chrooted dns server, that there are almost no userland utils for them to use to attack other machines, and it becomes more of a DOS on your dns server. Cheers! --Matt Galgoci On Wed, Dec 06, 2000 at 12:28:32PM -0600, almquist paul

Re: BIND in a chroot() environment

2000-12-06 Thread Leonard den Ottolander
Hi Paul, Put DNS on a dedicated Linux box. It is automatically isolated from other services and users without the added steps to setup chroot. Comments? Seems a little overdone for your 2 pc home network :-). Bye,

BIND in a chroot() environment

2000-12-04 Thread Charles Galpin
Hi I have found several excellent discussions about this, and even a script that helps set this up (http://sourceforge.net/projects/ctk-dns-chroot/). However, I'm wondering if there are any BIND rpms available that have this setup already, since I'd prefer it for the maintainance. Has anyone

Re: BIND in a chroot() environment

2000-12-04 Thread Charles Galpin
Well, enough time passed with the list down, that I have already got this working nicely. On Fri, 1 Dec 2000, Charles Galpin wrote: Hi I have found several excellent discussions about this, and even a script that helps set this up (http://sourceforge.net/projects/ctk-dns-chroot/). and it