Maintained by: NLnet Labs

[Unbound-users] Suggested config settings for chrooting unbound

Sergey Matveychuk
Thu Nov 22 10:50:10 CET 2012


22.11.2012 13:14, Andreas Schulze пишет:
> Am 22.11.2012 09:35 schrieb Ilya Bakulin:
>> I also cannot make hardlinks, because /usr and /var are on the separate
>> filesystems (which is a recommended setting).
> I copy unbound.conf before each unbound start.
> Also I created ~chroot/dev/random once.
>
> # grep chroot /etc/unbound/unbound.conf
>          chroot: /var/lib/unbound
>
> # find /var/lib/unbound
> /var/lib/unbound
> /var/lib/unbound/etc
> /var/lib/unbound/etc/unbound
> /var/lib/unbound/etc/unbound/unbound.conf
> /var/lib/unbound/dev
> /var/lib/unbound/dev/random
>

It looks good. But /var/spool/unbound is more specific for FreeBSD.
I can change a startup script for this scenario.