Re: secured bind default?
or one could write a new script to re-install it into its own chroot jail
http://www.Linux-Sec.net/Harden/server.gwif.html#DNS .. DNS stuff
On Thu, 12 Jul 2001, Sebastiaan wrote:
> It is known that running a domain name server in a chroot jail is more
> secure than running it the default way. I have also heard this about other
> packages. So my question: would it not be smart/handy to have this
> opportunity during install? When installing bind, a question could be
> asked if you want it run default or in a chroot enviro. I do not think it
> is very difficult to extend the installation scripts? It would make
> security easier.