Summary: | bind-9.2.1.ebuild - named should own /var/bind | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | Ken Stevenson <ken> |
Component: | [OLD] Server | Assignee: | Ben Lutgens (RETIRED) <lamer> |
Status: | RESOLVED FIXED | ||
Severity: | normal | ||
Priority: | High | ||
Version: | 1.1a | ||
Hardware: | x86 | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- |
Description
Ken Stevenson
2002-05-20 13:55:49 UTC
I updated the ebuild, emerging bind-9.2.1-r1 should solve all your problems as well as several other bugs I found. Take a peek @ http://www.gentoo.org/cgi-bin/viewcvs.cgi/gentoo-x86/net-misc/bind/ I also took in to consideration several of your suggestions. > The /var/bind directory as created by the ebuild is owned by root. All fixed. > The ebuild should also create a default named.conf so users don't get confused about the location of the pid file... Yes, created a default named.conf file. > A better solution might be to let bind use its default pid location (/var/run), and change the ebuild to not create /var/run/bind. This would be better, but we run in to a problem. BIND creates the pid file as the user it is set to run as, and in our case the user named. The named user doesn't have ample permission to write to /var/run, and instead of doing some trick with file permissions, it is simpler and for the most part safer to give BIND its own directory which it does have write permissions to. > I also think it would be better to not change the bind source code in the ebuild and instead use the -c config file option in the startup script. I was all for this, until I started to think about it a little more. Many other daemons have their own configuration directory (ie apache, ssh, cups, proftpd), and I like the idea of my rndc key being stored a little off to the side. I also created symlinks to /var/bind/pri and /var/bind/sec in /etc/bind so that someone can easily find all the configuration files from just looking in /etc/bind. I also stole the named.conf man page from other distros, so someone can easily update their named.conf a little easier. (Where is the man page for named.conf in the source tarball?) |