More ignorance (I have no shame) /var/named conventions

Doug Barton dougb at dougbarton.us
Tue Oct 5 23:23:30 UTC 2010


On 10/5/2010 12:14 PM, Stewart Dean wrote:
> In the standard 'yum install bind' installation, I see there are
> /var/named/data and /var/named/slaves directories. What are they for? I
> do so like to follow standards particularly if there is a good reason :)

I am not familiar with the way that your Linux distro does it, but for 
FreeBSD I separated the static authoritative, dynamic authoritative, and 
slave zones into separate directories so that we could use the principle 
of "least privilege" in the permissions on the directories and files.

> I plan to use views

Why? IME doing so causes way more problems than it solves, and is rarely 
worth the effort to do properly. Don't just do this because "that's how 
it's done," make sure you have a real need, and triple check that the 
problems you think you're solving can't be solved other ways.

> and have the internal zone files in
> /var/named/internal (or /var/named/data/internal) and the external zone
> files in /var/named/external (or /var/named/data/external).

If it were me I'd do /var/named/{external|internal}/{master|dynamic|slave}


hth,

Doug

-- 

Breadth of IT experience, and    |   Nothin' ever doesn't change,
depth of knowledge in the DNS.   |   but nothin' changes much.
Yours for the right price.  :)   |		-- OK Go
http://SupersetSolutions.com/



More information about the bind-users mailing list