[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: NMU'ing for wishlist bugs? (aka: intent to NMU bind9)

On Tue, Sep 17, 2002 at 09:45:39AM +0200, Javier Fernández-Sanguino Peńa wrote:
> 	No, no folly. Please think a moment. What permissions are you
> suggestion for master zone files? 644 with root:root? That's plain wrong,
> I don't want my master zone files to be accesible by any other process
> than the name server. That's sensible information, you do disable zone 
> transfers don't you?
> That means that the only sensible permissions for master zone files are 
> 640 root:named, or, if you do want the named server to modify them 640
> named:named.
> Do you agree with me here?

I don't For example a tmy sites DNS files are owned by root:operator, and
wirtable by the operator group so the system operators who belong to these
group can modify them without going root (they later restart the daemon
using sudo).


Reply to: