[10064] in bugtraq
Re: Bug in xfs
daemon@ATHENA.MIT.EDU (Alan Cox)
Wed Mar 31 15:11:40 1999
Date: Wed, 31 Mar 1999 10:25:07 +0100
Reply-To: Alan Cox <alan@LXORGUK.UKUU.ORG.UK>
From: Alan Cox <alan@LXORGUK.UKUU.ORG.UK>
X-To: jiivee@iki.fi
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: <199903310638.JAA10950@fluoriitti.hut.fi> from "Juha Virtanen" at
Mar 31, 99 09:38:28 am
> I do also run named as nonroot permissions (Startup
> /usr/sbin/named -u user -g group). I recommend other people
> doing this as well.
This isnt one to do blindly as it means named cannot bind to interfaces
that appear dynamically (eg as a DNS cache on a terminal server). The
fact that you end up having to run named as root or with the relevant
capability to allow it to bind to low ports.
Alan
