[MacPorts] #49264: unbound don't promote DNSSEC under El Capitan
MacPorts
noreply at macports.org
Wed Oct 28 11:44:09 PDT 2015
#49264: unbound don't promote DNSSEC under El Capitan
-----------------------+-------------------
Reporter: fritzs@… | Owner: snc@…
Type: defect | Status: new
Priority: Normal | Milestone:
Component: ports | Version: 2.3.4
Resolution: | Keywords:
Port: unbound |
-----------------------+-------------------
Comment (by fritzs@…):
whats a greater security hole - without chroot and with DNSSEC or with
chroot and without DNSEC on a single machine ;-)
must adapt the path from logfile, root-hints too?
{{{
chroot: ""
username: "unbound"
directory: "/opt/local/etc/unbound"
logfile: "/logs/unbound.log"
use-syslog: no
log-time-ascii: yes
log-queries: yes
root-hints: "/named.cache"
harden-glue: yes
harden-dnssec-stripped: yes
auto-trust-anchor-file: "/opt/local/var/run/unbound/root.key"
}}}
--
Ticket URL: <https://trac.macports.org/ticket/49264#comment:12>
MacPorts <https://www.macports.org/>
Ports system for OS X
More information about the macports-tickets
mailing list