[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: secured bind default?

hi ya

or one could write a new script to re-install it into its own chroot jail

c ya
http://www.Linux-Sec.net/Harden/server.gwif.html#DNS  .. DNS stuff

On Thu, 12 Jul 2001, Sebastiaan wrote:

> Hi,
> It is known that running a domain name server in a chroot jail is more
> secure than running it the default way. I have also heard this about other
> packages. So my question: would it not be smart/handy to have this
> opportunity during install? When installing bind, a question could be
> asked if you want it run default or in a chroot enviro. I do not think it
> is very difficult to extend the installation scripts? It would make
> security easier.
> Greetz,
> Sebastiaan

Reply to: