bind in jail?

To: "debian-user@lists.debian.org" <debian-user@lists.debian.org>
Subject: bind in jail?
From: Olav <betenoire@xs4all.nl>
Date: Mon, 13 Sep 2004 05:42:55 +0200
Message-id: <[🔎] 1095046974.2804.30.camel@fc2>

Do most people who run bind or bind9 on Debian, recompile the program to
run in a chroot environment ("jail")? Or perhaps, should this not be
necessary in Sarge because it has other defenses in place?

Running bind this way is a recommendation that you can often read about.
I also wonder what the *real* dangers would be from exposing bind to the
outside world. What bad things can happen, and could bind in fact be a
starting point for someone to break into a system? I have not seen too
much real world information about this so far (I could have looked in
the wrong places of course...)

TIA


-- 
Olav <betenoire@xs4all.nl>

Reply to:

Follow-Ups:
- Re: bind in jail?
  - From: Paolo Alexis Falcone <pfalcone@gmail.com>

Prev by Date: What happens after I install Sarge
Next by Date: Re: What happens after I install Sarge
Previous by thread: Re: What happens after I install Sarge
Next by thread: Re: bind in jail?
Index(es):
- Date
- Thread