diff options
| author | dillon <dillon@FreeBSD.org> | 1998-12-01 21:36:33 +0000 |
|---|---|---|
| committer | dillon <dillon@FreeBSD.org> | 1998-12-01 21:36:33 +0000 |
| commit | f312600f4d8581387c95708e3d151bf8e4da23fc (patch) | |
| tree | 5e9cd456902cd76b96517d08a43d60e536b417f2 /etc/rc.conf | |
| parent | dd3c1b5f96ce015028c6fef05c18b7afab991229 (diff) | |
| download | FreeBSD-src-f312600f4d8581387c95708e3d151bf8e4da23fc.zip FreeBSD-src-f312600f4d8581387c95708e3d151bf8e4da23fc.tar.gz | |
Reviewed by: freebsd-current, freebsd-security
Adjust rc.conf to run named in sandbox, adjust mtree to add /etc/namedb/s
subdirectory (user bind, group bind) to hold secondaries, adjust
comments in named.conf to reflect new secondary scheme. (Note that
core read-only zone files are left owned by root, increasing security even
more).
Diffstat (limited to 'etc/rc.conf')
| -rw-r--r-- | etc/rc.conf | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/etc/rc.conf b/etc/rc.conf index 30bdc56..cd0a4cb 100644 --- a/etc/rc.conf +++ b/etc/rc.conf @@ -6,7 +6,7 @@ # # All arguments must be in double or single quotes. # -# $Id: rc.conf,v 1.62 1998/11/15 20:30:04 msmith Exp $ +# $Id: rc.conf,v 1.63 1998/11/25 21:16:43 msmith Exp $ ############################################################## ### Important initial Boot-time options ##################### @@ -46,7 +46,7 @@ inetd_enable="YES" # Run the network daemon dispatcher (or NO). inetd_flags="" # Optional flags to inetd. named_enable="NO" # Run named, the DNS server (or NO). named_program="named" # path to named, if you want a different one. -named_flags="" # Flags for named (/etc/namedb/named.conf is +named_flags="-u bind -g bind" # Flags for named (/etc/namedb/named.conf is # the default now). kerberos_server_enable="NO" # Run a kerberos master server (or NO). kadmind_server_enable="NO" # Run kadmind (or NO) -- do not run on |
