some improvements/cleanup and cosmetic changes. No need to bump the revision or reset keywords (in my opinion). regards, Maurizio aka j2ee
Created attachment 3644 [details] updated ebuild
Created attachment 3645 [details] updated bind ebuild by adding: pkg_preinst() { # Let's get rid of those tools and their manpages # since they're provided by bind-tools rm -f ${D}/usr/share/man/man1/{dig.1.gz,host.1.gz} rm -f ${D}/usr/bin/{dig,host,nslookup} } to the BIND ebuild we avoid the 'clobbering' problem. the BIND ebuild will install the server. the bind-tools ebuild will install the dig/host/nslookup tools and their manpages. >>> Merging net-dns/bind-tools-9.2.2_rc1 to / --- /usr/ --- /usr/bin/ >>> /usr/bin/dig >>> /usr/bin/host >>> /usr/bin/nslookup --- /usr/share/ --- /usr/share/man/ --- /usr/share/man/man1/ >>> /usr/share/man/man1/dig.1.gz >>> /usr/share/man/man1/host.1.gz --- /usr/share/man/man8/ >>> /usr/share/man/man8/nslookup.8.gz I still don't think a new revision is needed. Users that already have BIND already have those tools. When they'll upgrade/rebuild bind then they will have to merge bind-tools, too. Sep 4 16:33:30 sexybit named[31816]: starting BIND 9.2.2rc1 -u named -n 1 Sep 4 16:33:30 sexybit named[31816]: using 1 CPU Sep 4 16:33:30 sexybit named[31818]: loading configuration from '/etc/bind/named.conf' Sep 4 16:33:30 sexybit named[31818]: no IPv6 interfaces found Sep 4 16:33:30 sexybit named[31818]: listening on IPv4 interface lo, 127.0.0.1#53 Sep 4 16:33:30 sexybit named[31818]: listening on IPv4 interface vmnet1, 192.168.254.1#53 Sep 4 16:33:30 sexybit named[31818]: listening on IPv4 interface ppp0, 80.117.240.147#53 Sep 4 16:33:30 sexybit named[31818]: command channel listening on 127.0.0.1#953 Sep 4 16:33:30 sexybit named[31818]: zone 0.0.127.in-addr.arpa/IN: loaded serial 2002081601 Sep 4 16:33:30 sexybit named[31818]: zone localhost/IN: loaded serial 2002081601 Sep 4 16:33:30 sexybit named[31818]: running Maurizio aka j2ee
Created attachment 3778 [details] bind-9.2.2_rc1-r1.tar.gz Revised ebuild/confs attached. Complete changelog entries: - Some improvements/cleanup and cosmetic changes. According to the current policy, if possibile all the "patching" operations should be made in src_unpack() - Fixed the "clobbering problem". BIND now installs only the server. bind-tools the tools. - Fixed a couple of symlink to work in chroot, too. - Added a better chroot support. Users can now safely change the chroot dir to whatever they want by editing /etc/conf.d/named before executing `ebuild ...bind...ebuild config` Otherwise a default dir (i.e. /chroot/dns) is used. - Added useful einfos - Fixed permission of ${CHROOT}/var/bind to allow 'rndc' to dump the named_db - Modified the ebegin line in named.rc6 as follow: ebegin "Starting ${CHROOT:+chrooted }named" - Fixed named.conf. A default installation shouldn't allow BIND to listen on external interfaces. Added listen-on-v6 { none; }; and listen-on { 127.0.0.1; }; Since all those are improvements, and not changes "that fix user problems" increasing the -r# is not needed. regards, Maurizio aka j2ee
I've committed the files.... Please test.
I have noticed a problem with bind. If /var/run permissions aren't set to 777 then then the pidfile cannot be created and consequently bind will not start. The file /var/run/named.pid wants to be created with permissions "named:named 755". Since the /var/run directory is owned by root:root you need to make the directory world-writable for programs that don't run as root to write their pidfile. This presents a security risk for obvious reasons. A better solution may be modifying bind to put the pidfile into /var/run/named and put "named:named 755" permissions on the directory.
well, even if bind runs as the 'named' user, it has to be started as root so It's able to create its pid file in /var/run/named sexybit named # /etc/init.d/named start * Starting named... [ ok ] sexybit named # ls -ld /var/run/ drwxr-xr-x 8 root root 4096 Sep 19 13:51 /var/run/ sexybit named # ls -l /var/run/named/named.pid -rw-r--r-- 1 named named 5 Sep 19 14:36 /var/run/named/named.pid
I think it's working without problems :) Let's close this bug .. thanks