Strictly separate directories for admin-provided and named-generated files?
Matus UHLAR - fantomas
uhlar at fantomas.sk
Sun Nov 17 10:14:32 UTC 2024
>On 16/11/2024 04:47, Charles Eckman via bind-users wrote:
>>I'm also down for other workarounds, if you have suggestions!
On 16.11.24 10:40, Nick Tait via bind-users wrote:
>As a simple workaround, you can create the zone file in /var/lib, and
>then create a hard-link (using "ln") to the same file in /etc/bind.
>That way you can configure BIND to use the /var/lib version (and it
>has permissions to create the signed version of the zone in the same
>directory), and you can manually edit the zone file in /etc/bind
>(along with all your non-DNSSEC zones).
note that hard links are impossible if /var is on separate partitions.
I am curious, if the original zone file in /etc/bind can be signed into
/var/lib using inline signing, as if the /etc/bind version was fetched from
remote server.
--
Matus UHLAR - fantomas, uhlar at fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
"One World. One Web. One Program." - Microsoft promotional advertisement
"Ein Volk, ein Reich, ein Fuhrer!" - Adolf Hitler
More information about the bind-users
mailing list