Re: bind9-chroot (was: questions on ITP)

To: debian-devel@lists.debian.org
Subject: Re: bind9-chroot (was: questions on ITP)
From: Peter Palfrader <weasel@debian.org>
Date: Wed, 26 Sep 2001 12:08:33 +0200
Message-id: <[🔎] 20010926120833.A25979@marvin.palfrader.org>
Mail-followup-to: Peter Palfrader <weasel@debian.org>, debian-devel@lists.debian.org
In-reply-to: <[🔎] 20010926095644.R27861@salem.getuid.de>
References: <[🔎] 87elozyuaa.fsf@rover.gag.com> <[🔎] 20010923114733.A636@wonderland.linux.it> <[🔎] 20010923162452.A16048@fishbowl.madduck.net> <[🔎] 20010924103154.C2382@salem.getuid.de> <[🔎] 20010924123102.B1027@fishbowl.madduck.net> <[🔎] 20010924225913.G2382@salem.getuid.de> <[🔎] 20010924224803.A4646@godzillah> <[🔎] 20010925101107.A27861@salem.getuid.de> <[🔎] 20010925091537.A8760@godzillah> <[🔎] 20010926095644.R27861@salem.getuid.de>

On Wed, 26 Sep 2001, Christian Kurz wrote:

> > > and would instead suggestion to modify the documents stating that all
> > > config files should be in /etc to make a exception for $CHROOT.
> 
> > <wears QA hat>
> > NEVER. This is not some low-grade distribution where you can go around
> > scattering configuration files all over the filesystem.  I will fight tooth
> > and nail against such an atrocity.
> > </wears QA hat>
> 
> Well, then we have to find some other way like cp, rsync, or something
> else to keep one copy of the files in /etc and one in $CHROOT/etc. Using
> mount --bind is like I stated before, no option.

I did not follow the discussion closely, so please forgive me when I'm
posting already discussed facts here.

The postfix MTA also uses a chroot and in its init.d file and all
files needed by the chrooted processes are copied to the chroot upon
start of postfix.  

I do the same with my chrooted bind8.

Are there any problems I missed with cimply copying the files?


Mount -bind is no option, hardlinks aren't either. Symlinks from
inside the chroot to /etc are not possible, the other direction
is imho even more evil than cp.
					yours,
					peter

-- 
 PGP signed and encrypted  |  .''`.  ** Debian GNU/Linux **
    messages preferred.    | : :' :    By professionals,
                           | `. `'      for professionals
 http://www.palfrader.org/ |   `-    http://www.debian.org/

Reply to:

Follow-Ups:
- Re: bind9-chroot (was: questions on ITP)
  - From: Marco d'Itri <md@Linux.IT>

References:
- Re: bind9-chroot (was: questions on ITP)
  - From: Bdale Garbee <bdale@gag.com>
- Re: bind9-chroot (was: questions on ITP)
  - From: Marco d'Itri <md@Linux.IT>
- Re: bind9-chroot (was: questions on ITP)
  - From: Martin F Krafft <madduck@madduck.net>
- Re: bind9-chroot (was: questions on ITP)
  - From: Christian Kurz <shorty@debian.org>
- Re: bind9-chroot (was: questions on ITP)
  - From: Martin F Krafft <madduck@madduck.net>
- Re: bind9-chroot (was: questions on ITP)
  - From: Christian Kurz <shorty@debian.org>
- Re: bind9-chroot (was: questions on ITP)
  - From: Henrique de Moraes Holschuh <hmh@debian.org>
- Re: bind9-chroot (was: questions on ITP)
  - From: Christian Kurz <shorty@debian.org>
- Re: bind9-chroot (was: questions on ITP)
  - From: Henrique de Moraes Holschuh <hmh@debian.org>
- Re: bind9-chroot (was: questions on ITP)
  - From: Christian Kurz <shorty@debian.org>

Prev by Date: Re: bind9-chroot (was: questions on ITP)
Next by Date: Re: Why I can not go ahead with IMP?
Previous by thread: Re: bind9-chroot (was: questions on ITP)
Next by thread: Re: bind9-chroot (was: questions on ITP)
Index(es):
- Date
- Thread