[packages/unbound] disable chroot in the default config
jajcus
jajcus at pld-linux.org
Fri Apr 25 11:23:26 CEST 2014
commit 267353b48b7cfeadd44de3badff41934d4443ad4
Author: Jacek Konieczny <j.konieczny at eggsoft.pl>
Date: Fri Apr 25 11:08:21 2014 +0200
disable chroot in the default config
With chroot enabled (the default):
– the auto trust anchor file /var/lib/unbound/root.key is not available
– unbound has no access to /dev/random for entropy source
I don't think those problems can be solved in an elegant way and don't
think there is a big risk running this without a chroot.
chroot can always be enabled in a custom configuration
unbound.spec | 1 +
1 file changed, 1 insertion(+)
---
diff --git a/unbound.spec b/unbound.spec
index 724c56c..df4bd9b 100644
--- a/unbound.spec
+++ b/unbound.spec
@@ -117,6 +117,7 @@ Pythonowy interfejs do biblioteki unbound.
%configure \
%{?with_python:--with-pyunbound} \
--with-pidfile=/run/%{name}.pid \
+ --with-chroot-dir="" \
--with-conf-file=%{_sysconfdir}/%{name}/%{name}.conf \
--with-rootkey-file=/var/lib/%{name}/root.key \
--with-rootcert-file=%{_sysconfdir}/%{name}/icannbundle.pem
================================================================
---- gitweb:
http://git.pld-linux.org/gitweb.cgi/packages/unbound.git/commitdiff/b53232e51ee739a02cee9b4f29d2c3e444b86514
More information about the pld-cvs-commit
mailing list