[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] profile of a bind worm
- Subject: Re: [cobalt-security] profile of a bind worm
- From: "Lawrence Frewin of Accommodation.com" <Lawrence@xxxxxxxxxxxxxxxxx>
- Date: Tue, 12 Jun 2001 18:22:41 +0100
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
We made the changes to the named file, but have subsequently found
"couldn't create pid file /var/run/named.pid" in our logs.
It looks like root permission is needed to create the "named.pid" file, but
is it critical?
LF
----- Original Message -----
From: "Kevin D" <kdlists@xxxxxxxxxxxxxxx>
To: <cobalt-security@xxxxxxxxxxxxxxx>
Sent: Tuesday, June 12, 2001 4:46 PM
Subject: Re: [cobalt-security] profile of a bind worm
> From: "Jabie Gray" <apollo@xxxxxxxxxx>
>
> > My named is running as root too.
>
> Bad idea.
>
> > I see two instances of the daemon function in the /etc/rc.d/init.d/named
> > script. One is for start, the other is for hard restart.
> > Do I need to change both of them to use -u & -g options?
>
> Yes you should.
>
> > Do I need to create the user and group of named?
>
> Maybe. Check your /etc/passwd file. My guess is probably not.
>
> Kevin
>
> _______________________________________________
> cobalt-security mailing list
> cobalt-security@xxxxxxxxxxxxxxx
> http://list.cobalt.com/mailman/listinfo/cobalt-security