|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Why not sandbox BIND?
Brett Glass (brett
lariat.org)
Fri, 12 Nov 1999 10:24:44 -0700
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
- Next message: Brett Glass: "Re: Why not sandbox BIND?"
- Previous message: H. Eckert: "Re: Status of Passwords/etc in FreeBSD-stable"
- In reply to: Kris Kennaway: "Re: Status of Passwords/etc in FreeBSD-stable"
- Next in thread: Josef Karthauser: "Re: Why not sandbox BIND?"
- Reply: Josef Karthauser: "Re: Why not sandbox BIND?"
Our production systems are running an older version of FreeBSD (we
always stay a bit behind the leading edge), so they do not have
that user.
--Brett
At 09:22 AM 11/12/1999 -0500, Bill Fumerola wrote:
>On Thu, 11 Nov 1999, Brett Glass wrote:
>
> > I assume you mean rc.conf, not named.conf.
> >
> > In any case, maybe there should be a "sandbox BIND" flag in rc.conf
> > that selects a sandboxed configuration and is on by default.
> > Also, it'd be nice to have the user "named" already in /etc/passwd
> > and ready to go.
>
>bind:*:53:53::0:0:Bind Sandbox:/:/sbin/nologin
>
>You mean like that in src/etc/master.passwd?
>
>--
>- bill fumerola - billfchc-chimes.com - BF1560 - computer horizons corp -
>- ph:(800) 252-2421 - bfumerolcomputerhorizons.com - billfFreeBSD.org -
>
>
To Unsubscribe: send mail to majordomoFreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
- Next message: Brett Glass: "Re: Why not sandbox BIND?"
- Previous message: H. Eckert: "Re: Status of Passwords/etc in FreeBSD-stable"
- In reply to: Kris Kennaway: "Re: Status of Passwords/etc in FreeBSD-stable"
- Next in thread: Josef Karthauser: "Re: Why not sandbox BIND?"
- Reply: Josef Karthauser: "Re: Why not sandbox BIND?"
This archive was generated by hypermail 2.0b3 on Fri Nov 12 1999 - 11:25:19 CST