bind and fc6

[Tim]

On Fri, 2007-02-02 at 18:10 +0530, François Patte wrote:
> BTW, I am not an expert, what are the advantages to "chroot" bind
> config? If everybody knows that bind is chrooted and where is the
> location of the new config files.... 

The idea is that if someone manages to exploit BIND, it can't mess up
the rest of your system, as it's locked in a jail.  It's not about
protecting BIND from something else.

NB:  It's not 100% locked up, people do find ways to break out of chroot
jails.

-- 
(Currently testing FC5, but still running FC4, if that's important.)

Don't send private replies to my address, the mailbox is ignored.
I read messages from the public lists.