bind and fc6
Tim
ignored_mailbox at yahoo.com.au
Fri Feb 2 13:47:48 UTC 2007
On Fri, 2007-02-02 at 18:10 +0530, François Patte wrote:
> BTW, I am not an expert, what are the advantages to "chroot" bind
> config? If everybody knows that bind is chrooted and where is the
> location of the new config files....
The idea is that if someone manages to exploit BIND, it can't mess up
the rest of your system, as it's locked in a jail. It's not about
protecting BIND from something else.
NB: It's not 100% locked up, people do find ways to break out of chroot
jails.
--
(Currently testing FC5, but still running FC4, if that's important.)
Don't send private replies to my address, the mailbox is ignored.
I read messages from the public lists.
More information about the fedora-list
mailing list