diff options
| author | Adam Tkac <atkac@fedoraproject.org> | 2007-06-04 13:44:35 +0000 |
|---|---|---|
| committer | Adam Tkac <atkac@fedoraproject.org> | 2007-06-04 13:44:35 +0000 |
| commit | 7fdb7fd69365bbafa3cf83a6dc9ba2a5e24e7db8 (patch) | |
| tree | 8dc3688abcc33cd569ad1d50caf4c41a7f6ae37c /bind-9.3.2-redhat_doc.patch | |
| parent | 9091db68d8f63a9ab21ccad037e72339adef068f (diff) | |
| download | bind-7fdb7fd69365bbafa3cf83a6dc9ba2a5e24e7db8.tar.gz bind-7fdb7fd69365bbafa3cf83a6dc9ba2a5e24e7db8.tar.xz bind-7fdb7fd69365bbafa3cf83a6dc9ba2a5e24e7db8.zip | |
- very minor compatibility change in bind-chroot-admin (line 215)bind-9_4_1-5_fc8
- enabled IDN support by default and don't distribute IDN libraries
(#169546)
- specfile cleanup
- add dynamic directory to /var/named. This directory will be primarily
used for dynamic DNS zones. ENABLE_ZONE_WRITE and SELinux's
named_write_master_zones no longer exist
Diffstat (limited to 'bind-9.3.2-redhat_doc.patch')
| -rw-r--r-- | bind-9.3.2-redhat_doc.patch | 15 |
1 files changed, 4 insertions, 11 deletions
diff --git a/bind-9.3.2-redhat_doc.patch b/bind-9.3.2-redhat_doc.patch index 1d1a87a..eb79159 100644 --- a/bind-9.3.2-redhat_doc.patch +++ b/bind-9.3.2-redhat_doc.patch @@ -1,6 +1,6 @@ --- bind-9.4.0/bin/named/named.8.redhat_doc 2007-01-30 01:23:44.000000000 +0100 +++ bind-9.4.0/bin/named/named.8 2007-03-12 15:39:19.000000000 +0100 -@@ -205,6 +205,75 @@ +@@ -205,6 +205,68 @@ \fI/var/run/named.pid\fR .RS 4 The default process\-id file. @@ -37,21 +37,14 @@ +means that files in the zone database directory cannot be modified by dynamic +DNS (DDNS) updates or zone transfers. +.PP -+The Red Hat BIND distribution and SELinux policy creates two directories where -+named is allowed to create and modify files: $ROOTDIR/var/named/slaves and -+$ROOTDIR/var/named/data. By placing files you want named to modify, such as ++The Red Hat BIND distribution and SELinux policy creates three directories where ++named is allowed to create and modify files: /var/named/slaves, /var/named/dynamic ++/var/named/data. By placing files you want named to modify, such as +slave or DDNS updateable zone files and database / statistics dump files in +these directories, named will work normally and no further operator action is +required. Files in these directories are automatically assigned the 'named_cache_t' +file context, which SELinux allows named to write. +.PP -+You can enable the named_t domain to write and create named_zone_t files by use -+of the SELinux tunable boolean variable "named_write_master_zones", using the -+setsebool(8) command or the system-config-security GUI . If you do this, you -+must also set the ENABLE_ZONE_WRITE variable in /etc/sysconfig/named to -+1 / yes to set the ownership of files in the $ROOTDIR/var/named directory -+to named:named in order for named to be allowed to write them. -+.PP +\fBRed Hat BIND named_sdb SDB support:\fR +.PP +Red Hat ships the bind-sdb RPM that provides the /usr/sbin/named_sdb program, |