PLDWWW: Vserver

[glen]

Author: glen   Date: Tue May 16 11:37:07 2006 GMT
Module: PLDWWW   URL: http://www.pld-linux.org/Vserver
---- Log message:
update from Marcin Winkler about bind

---- Page affected: Vserver

---- Diffs:

================================================================
  === bind won't install because of a mknod problem ===
  
  bind requires some special device nodes inside it's chroot jail located in ''/var/lib/named''. Vserver security does not allow device node creation so you will have to install the package specifying {{{--excludepath=/var/lib/named/dev}}} and then create devices {{{/dev/null}}} and {{{/dev/random}}} from outside of the vserver context.
+ 
+ UPDATE: vpoldek doesn't allow command line option
+ {{{
+ --excludepath=/var/lib/named/dev and in poldek.conf
+ # poldek: unrecognized option `--excludepath=/var/lib/named/dev'
+ }}}
+ Alternative method to this is write in poldek.conf
+ {{{
+ rpmdef = _netsharedpath /dev:/var/lib/named/dev
+ }}}
+ or in {{{/vservers/test/etc/rpm/macros}}}
+ {{{
+ %_netsharedpath     /dev:/var/lib/named/dev
+ }}}
  
  To run bind you will have to change one more thing. PLD version of bind uses chroot for extra security and vserver security removes all special kernel capabilities. To allow chrooting inside your DNS vserver, use the following: