DiaryScript and Tutorial

A Listed blog may be linked to from Blogger.com, such as the Blogger home page, Blogger Play, and Next Blog. If you select "No" your blog will not appear in these places, but it will still be available on the Internet. This blog will still be displayed on your profile unless you hide it

• HOME
• ABOUT ME
• My Facebook Profile

---

View My Stats

Other Status

Check Your IP

---

My Feed

PARTNER

Computer Forum Increase your website traffic-PageRank10 Experiment

COPY PASTE : DNS SERVER USING UBUNTU 9.10

20 Januari 2011

Run
For security reasons we want to run BIND chrooted so we have to do the following steps:
Edit the file /etc/default/bind9 so that the daemon will run as the unprivileged user bind, chrooted to /var/lib/named. Modify the line: OPTIONS="-u bind" so that it reads OPTIONS="-u bind -t /var/lib/named":

# run resolvconf? RESOLVCONF=yes # startup options for the server OPTIONS="-u bind -t /var/lib/named"

Create the necessary directories under /var/lib:
Then move the config directory from /etc to /var/lib/named/etc:
Create a symlink to the new config directory from the old location (to avoid problems when bind gets updated in the future):
Make null and random devices, and fix permissions of the directories:
We need to create the file /etc/rsyslog.d/bind-chroot.conf...
... and add the following line so that we can still get important messages logged to the system logs:

$AddUnixListenSocket /var/lib/named/dev/log

Restart the logging daemon:
Start up BIND, and check /var/log/syslog for errors:

This entry was posted on 20 Januari 2011 at 14:18. There are . If you want, you can leave your own response by clicking here. You may also send this post to a friend of yours via email, or bookmark it for yourself by using icons below:

© Silverfall - 2009