Maintained by: NLnet Labs

[Unbound-users] root hints not checked

Wouter Wijngaards
Fri Apr 11 09:40:49 CEST 2008


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi Randy,

You are correct. The problem is the check-conf is failing, unbound
itself is happy with both definitions "root.ca" or "/etc/unbound/root.ca".

chroot is enabled by default. you can turn it off with
	chroot: ""
in the config file.

I think my fix will be that:
in the config file you specify files are /my_chroot/bla or as "bla",
with the first being relative to the chroot obviously and the last
relative to the working directory.

Thanks for the report.

Best regards,
~   Wouter

Randy Bush wrote:
| iij.psg.com:/etc/unbound# grep root.ca unbound.conf
|         root-hints: "root.ca"
| iij.psg.com:/etc/unbound# ls -la .
| total 40
| drwxr-xr-x   2 unbound  unbound    512 Apr 11 03:33 ./
| drwxr-xr-x  21 root     wheel     2560 Apr 11 03:32 ../
| -rw-r--r--   1 unbound  unbound   2958 Apr 11 03:20 root.ca
| -rw-r--r--   1 unbound  unbound  12705 Apr 11 03:33 unbound.conf
| -rw-r--r--   1 root     unbound  12718 Apr 11 03:32 unbound.conf~
| -rw-r--r--   1 unbound  unbound      6 Apr 11 03:31 unbound.pid
| iij.psg.com:/etc/unbound# unbound-checkconf
| [1207884891] unbound-checkconf[27371:0] fatal error: file with
| root-hints: "root.ca" not in chrootdir /etc/unbound
|
| same if it is defined as /etc/unbound/root.ca
|
| and i am not running chrooted anyway
|
| randy
| _______________________________________________
| Unbound-users mailing list
| Unbound-users at unbound.net
| http://unbound.net/mailman/listinfo/unbound-users

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)

iD8DBQFH/xYBkDLqNwOhpPgRAqctAJ0VKwxvpORy1OlbQCD5m6BS9ymNgwCdFwlf
LV3/ymZSEu9kEVGwHP1dpyw=
=+0sX
-----END PGP SIGNATURE-----