On Mon, Sep 04, 2006 at 08:11:25PM -0400, Robert L Cochran wrote: > I need to create a DNS server on an FC5 box. I've just spent the > afternoon reading the man pages. I assume that I put my zone files plus > named.conf in the chroot jail directory /var/named/chroot/var/named > (named.conf is in /etc also), start named and I'm in business. named.conf should be in the jail's /etc (/var/named/chroot/etc/), not in the real /etc. The latter is a symlink into the jail. I suspect that a program running in a jail can't follow symlinks to outside of it. [root@charlesc ~]# ll /etc/named.conf lrwxrwxrwx 1 root named 32 Apr 23 07:15 /etc/named.conf -> /var/named/chroot/etc/named.conf > I don't have to do anything to activate chroot-ing, it just works? You may want the following packages: bind-9.3.2-20.FC5 bind-chroot-9.3.2-20.FC5 <====== n.b.! bind-config-9.3.2-20.FC5 bind-libs-9.3.2-20.FC5 bind-utils-9.3.2-20.FC5 I highly recommend Liu & Albitz, DNS & Bind, 5th ed, O'Reilly, May, 2006. It is more than worth it in time and frustration saved. It also happens to cover bind 9.3. -- Charles Curley /"\ ASCII Ribbon Campaign Looking for fine software \ / Respect for open standards and/or writing? X No HTML/RTF in email http://www.charlescurley.com / \ No M$ Word docs in email Key fingerprint = CE5C 6645 A45A 64E4 94C0 809C FFF6 4C48 4ECD DFDB
Attachment:
pgpBwtBRzZsur.pgp
Description: PGP signature
