[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: More BIND thoughts

To: linuxkb-list@seul.org
Subject: Re: More BIND thoughts
From: Jason Pincin <jpincin@ashtech.net>
Date: Sat, 16 Jan 1999 16:18:48 -0500
In-Reply-To: <Pine.BSF.4.05.9901161150460.18271-100000@shell5.ba.best.com>; from Aaron D. Turner on Sat, Jan 16, 1999 at 11:56:50AM -0800
References: <Pine.BSF.4.05.9901161150460.18271-100000@shell5.ba.best.com>
Reply-To: linuxkb-list@seul.org
Sender: owner-linuxkb-list@seul.org

> So, the question is:
> What's more important- security or standard file placement?
> I opt for security.

Definately security.  Agreed.  And I understood the fact that named was
running as a seperate user (named).  My method of getting around that
would be to create a group such as 'daemon' or what not for var/log
permissions and var/run.  For /etc you would just need file level group
changes.  Etc...

Again... just a thought, if people think it's better to let everything
reside in home, I'll go along with that... let me know your thoughts on
the above though.

On a side note... I understand as well that it's an RPM so moving stuff
around is a bad idea there... we'd have ta go to the source.  

Another idea is to just create links from all the standard places.  You
could link /etc/named.conf and /var/log/named and /var/run/named.pid back
to the proper files/directories as well.

Thoughts?

Jason

Follow-Ups:
- Re: More BIND thoughts
  - From: "Aaron D. Turner" <aturner@best.com>

References:
- More BIND thoughts
  - From: "Aaron D. Turner" <aturner@best.com>

Prev by Date: Re: DNS mods?
Next by Date: Re: MOT haywire?
Prev by thread: More BIND thoughts
Next by thread: Re: More BIND thoughts
Index(es):
- Date
- Thread