Maintained by: NLnet Labs

[Unbound-users] Suggested config settings for chrooting unbound

Andreas Schulze
Thu Nov 22 10:14:58 CET 2012


Am 22.11.2012 09:35 schrieb Ilya Bakulin:
> I also cannot make hardlinks, because /usr and /var are on the separate
> filesystems (which is a recommended setting).
I copy unbound.conf before each unbound start.
Also I created ~chroot/dev/random once.

# grep chroot /etc/unbound/unbound.conf 
        chroot: /var/lib/unbound

# find /var/lib/unbound
/var/lib/unbound
/var/lib/unbound/etc
/var/lib/unbound/etc/unbound
/var/lib/unbound/etc/unbound/unbound.conf
/var/lib/unbound/dev
/var/lib/unbound/dev/random

-- 
Andreas Schulze
Internetdienste | P252

DATEV eG
90329 Nürnberg | Telefon +49 911 319-0 | Telefax +49 911 319-3196
E-Mail info @datev.de | Internet www.datev.de
Sitz: 90429 Nürnberg, Paumgartnerstr. 6-14 | Registergericht Nürnberg, GenReg Nr.70
Vorstand
Prof. Dieter Kempf (Vorsitzender)
Dipl.-Kfm. Wolfgang Stegmann (stellvertretender Vorsitzender)
Dipl.-Kfm. Michael Leistenschneider
Dipl.-Kfm. Dr. Robert Mayr
Jörg Rabe v. Pappenheim
Dipl.-Vw. Eckhard Schwarzer
Vorsitzender des Aufsichtsrates: Reinhard Verholen