Revision: 119626 https://trac.macports.org/changeset/119626 Author: dluke@macports.org Date: 2014-05-02 12:48:56 -0700 (Fri, 02 May 2014) Log Message: ----------- bind9: use dedicated user for named, add some extra info to the notes (fixes #43006) Modified Paths: -------------- trunk/dports/net/bind9/Portfile Modified: trunk/dports/net/bind9/Portfile =================================================================== --- trunk/dports/net/bind9/Portfile 2014-05-02 18:26:12 UTC (rev 119625) +++ trunk/dports/net/bind9/Portfile 2014-05-02 19:48:56 UTC (rev 119626) @@ -4,6 +4,7 @@ name bind9 version 9.10.0 +revision 1 categories net maintainers geeklair.net:dluke platforms darwin freebsd sunos @@ -48,6 +49,8 @@ startupitem.netchange yes startupitem.executable ${prefix}/sbin/named -f +add_users named group=named + configure.env STD_CDEFINES=-DDIG_SIGCHASE=1 configure.args --mandir=${prefix}/share/man \ @@ -67,7 +70,7 @@ post-destroot { # Ensure needed directories - xinstall -m 755 -d \ + xinstall -o named -g named -m 755 -d \ ${destroot}${prefix}/var/named \ ${destroot}${prefix}/var/run @@ -79,7 +82,7 @@ # Install the db files as samples foreach f "db.127.0.0 db.cache db.localhost" { - xinstall -o root -m 644 ${filespath}/${f} \ + xinstall -o named -g named -m 644 ${filespath}/${f} \ ${destroot}${prefix}/var/named/${f}.dist } @@ -96,4 +99,10 @@ * sudo cp ${prefix}/var/named/db.127.0.0.dist ${prefix}/var/named/db.127.0.0 * sudo cp ${prefix}/var/named/db.cache.dist ${prefix}/var/named/db.cache * sudo cp ${prefix}/var/named/db.localhost.dist ${prefix}/var/named/db.localhost +* +* You may want to generate a key (for rndc): +* $ sudo rndc-confgen -a +* +* Remember to secure your configuration: +* http://www.cymru.com/Documents/secure-bind-template.html ******************************************************"