On Sun, May 27, 2018 at 09:13:30AM +0100,
André Rodier via bind-users wrote:
In the end, I finally used /var/cache/bind as the directory for bind9,
and I do not have the error from AppArmor any more. Also, I did not
want to loose the time I invested in the configuration.
However, I kept my domain definition file in /etc/bind, with read only
permissions, and used a symbolic link in /var/cache/bind. This is the
safest way I found to keep apart configuration and dynamic data.
On 27.05.18 08:06, /dev/rob0 wrote:
You're apparently misunderstanding what a zone file is. It's a data
file, not a configuration file. It properly belongs under /var, not
under /etc.
master files may be stored in /etc - unless the zones are to bemodified by
server, e.g. dynamic updates or signing.
however, the rest is true.
I dislike when server process wants to modify its own config file.
that's admin's job.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
WinError #98652: Operation completed successfully.
_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
