Re: [linux-security] Re: Chrooting bind 8.1.2 under debian 2.0
Carlos Barros wrote:
> On Tue, 14 Jul 1998, cfb wrote:
>
> > The main problem seems to be with the way that debian starts bind using
> > the script /etc/init.d/bind. I thought it would be really neat to just
> > change the #!/bin/sh at the top of the script to something like :
> > #!/usr/sbin/chroot /chroot-dns/ /bin/sh
> > or
> > #!/usr/sbin/chroot /chroot-dns/ /chroot-dns/bin/sh
>
> try changing only the line that start the bind daemon eg:
>
> chroot /chroot-dns/ /bin/named
Splendid idea - but it still runs as root..
I guess that bind does not need anything except it's external programs
(named-xfer etc) and the config files?
--
Leigh
--
Unsubscribe? mail -s unsubscribe debian-user-request@lists.debian.org < /dev/null
Reply to: