Re: Whom the BIND newest vulnerability concerns?

To: David Huggins-Daines <dhd@eradicator.org>, debian-devel@lists.debian.org
Subject: Re: Whom the BIND newest vulnerability concerns?
From: Russell Coker <russell@coker.com.au>
Date: Sun, 14 Nov 1999 14:06:37 +0100
Message-id: <99111414072802.07448@lyta>
Reply-to: russell@coker.com.au
In-reply-to: <19991112163050.A20223@blood-axp.eradicator.org>
References: <19991112140622.A30598@lodz.tpsa.pl> <v0422080ab4521f68ada2@[206.163.71.146]> <19991112163050.A20223@blood-axp.eradicator.org>

On Fri, 12 Nov 1999, David Huggins-Daines wrote:
>On Fri, Nov 12, 1999 at 11:56:01AM -0800, Joel Klecker wrote:
>> I'm not sure this offers any major advantage over starting named with -u named
>> -g named.
>
>In fact, -u named is much better, because if you use sudo, named will not be
>able to create its pidfile or the /var/run/ndc socket.

Just have the "named" user be in the "daemon" group, have the /var/run
directory owned by group "daemon" and mode 1775...

-- 
Electronic information tampers with your soul.

Reply to:

Follow-Ups:
- Re: Whom the BIND newest vulnerability concerns?
  - From: Herbert Xu <herbert@gondor.apana.org.au>

References:
- Whom the BIND newest vulnerability concerns?
  - From: Tomasz Papszun <tomek@lodz.tpsa.pl>
- Re: Whom the BIND newest vulnerability concerns?
  - From: Joel Klecker <jk@espy.org>
- Re: Whom the BIND newest vulnerability concerns?
  - From: David Huggins-Daines <dhd@eradicator.org>

Prev by Date: Re: Logs and Permissions for Daemons
Next by Date: debconf dependency problem.
Previous by thread: Re: Whom the BIND newest vulnerability concerns?
Next by thread: Re: Whom the BIND newest vulnerability concerns?
Index(es):
- Date
- Thread