[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-users] Running Bind as non Root

Subject: [cobalt-users] Running Bind as non Root
From: Scott F <scott_falco@xxxxxxxxx>
Date: Thu Aug 23 06:17:29 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

> I just installed bind-update.pkg  and it 
> runs under user "root". I heard that named 
> should not run as user "root". Could someone
> provide an alterative answer and maybe a resolution?

Personally, I'd change that sucker today... Here's how
(insert standard disclaimer here):

First create a user/group called "named" as such:

useradd -c "Named" -u 25 -s /bin/false -r -d
/var/named named 2>/dev/null || :

(note the caps on Named in the first part is not a
typo). 

This setup will send anyone who *does* get in on
named, straight to null (hell)

Then simply make the following little change in
/etc/rc.d/init.d/named

Inside /etc/rc.d/init.d/named there are 2 instances
of:

daemon named

change both of these to:

daemon named -u named -g named

then restart named as such:

/etc/rc.d/init.d/named restart

and you're all set..

Cheers!
Scott

__________________________________________________
Do You Yahoo!?
Make international calls for as low as $.04/minute with Yahoo! Messenger
http://phonecard.yahoo.com/

Follow-Ups:
- Re: [cobalt-users] Running Bind as non Root
  - From: Carrie Bartkowiak
- Re: [cobalt-users] Running Bind as non Root
  - From: Zeffie

Prev by Date: Re: Cobaltracks was RE: [cobalt-users] should I buy into RaQ3
Next by Date: [cobalt-users] Membership Management
Previous by thread: Re: [cobalt-users] Running Bind as non Root
Next by thread: Re: [cobalt-users] Running Bind as non Root

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index