[119626] trunk/dports/net/bind9/Portfile

dluke at macports.org dluke at macports.org
Fri May 2 12:48:56 PDT 2014 

Revision: 119626
          https://trac.macports.org/changeset/119626
Author:   dluke at macports.org
Date:     2014-05-02 12:48:56 -0700 (Fri, 02 May 2014)
Log Message:
-----------
bind9: use dedicated user for named, add some extra info to the notes (fixes #43006)

Modified Paths:
--------------
    trunk/dports/net/bind9/Portfile

Modified: trunk/dports/net/bind9/Portfile
===================================================================
--- trunk/dports/net/bind9/Portfile	2014-05-02 18:26:12 UTC (rev 119625)
+++ trunk/dports/net/bind9/Portfile	2014-05-02 19:48:56 UTC (rev 119626)
@@ -4,6 +4,7 @@
 
 name			bind9
 version			9.10.0
+revision		1
 categories		net
 maintainers		geeklair.net:dluke
 platforms		darwin freebsd sunos
@@ -48,6 +49,8 @@
 startupitem.netchange	yes
 startupitem.executable	${prefix}/sbin/named -f
 
+add_users		named group=named
+
 configure.env		STD_CDEFINES=-DDIG_SIGCHASE=1
 
 configure.args		--mandir=${prefix}/share/man \
@@ -67,7 +70,7 @@
 
 post-destroot	{
 	# Ensure needed directories
-	xinstall -m 755 -d \
+	xinstall -o named -g named -m 755 -d \
 		${destroot}${prefix}/var/named \
 		${destroot}${prefix}/var/run
 
@@ -79,7 +82,7 @@
 
 	# Install the db files as samples
 	foreach f "db.127.0.0 db.cache db.localhost" {
-		xinstall -o root -m 644 ${filespath}/${f} \
+		xinstall -o named -g named -m 644 ${filespath}/${f} \
 			${destroot}${prefix}/var/named/${f}.dist
 	}
 
@@ -96,4 +99,10 @@
 * sudo cp ${prefix}/var/named/db.127.0.0.dist ${prefix}/var/named/db.127.0.0
 * sudo cp ${prefix}/var/named/db.cache.dist ${prefix}/var/named/db.cache
 * sudo cp ${prefix}/var/named/db.localhost.dist ${prefix}/var/named/db.localhost
+* 
+* You may want to generate a key (for rndc):
+* $ sudo rndc-confgen -a
+*
+* Remember to secure your configuration:
+* http://www.cymru.com/Documents/secure-bind-template.html
 ******************************************************"
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.macosforge.org/pipermail/macports-changes/attachments/20140502/27445ce2/attachment.html>

More information about the macports-changes mailing list