hvconfig_pre()
{
groupadd -f named
- hv_useradd -c BindOwner -g named -m -s /bin/false named
-}
-
-hvconfig_post()
-{
- # Use updated address for L.ROOT-SERVERS.NET.
- sed -i "s@198.32.64.12@199.7.83.42@" ${LFS_TMP}/${PACKAGE}/lib/dns/rootns.c
+ hv_useradd -c BindOwner -g named -s /bin/false named
+ install -d -m770 -o named -g named /srv/named
}
hvbuild_post()
# forever for keyboard input before continuing.
BINDKEY=$(rndc-confgen -b 512 -r /dev/random | grep -m 1 "secret" | cut -d '"' -f 2)
- cd /home/named
- mkdir -p dev etc/namedb/{pz,slave} var/run
- rm -f /home/named/dev/null
- mknod /home/named/dev/null c 1 3
- rm -f /home/named/dev/random
- mknod /home/named/dev/random c 1 8
- chmod 666 /home/named/dev/{null,random}
- cp /etc/localtime /home/named/etc
+ cd /srv/named
+ mkdir -p dev etc/namedb/{pz,slave} var/run usr/lib
+ rm -f /srv/named/dev/null
+ mknod /srv/named/dev/null c 1 3
+ rm -f /srv/named/dev/random
+ mknod /srv/named/dev/random c 1 8
+ chmod 666 /srv/named/dev/{null,random}
+ cp /etc/localtime /srv/named/etc
# Creating the named.conf file from which named will read the location of
# zone files, root name servers and secure DNS keys.
- cat > /home/named/etc/named.conf << "EOF"
+ cat > /srv/named/etc/named.conf << "EOF"
options {
directory "/etc/namedb";
pid-file "/var/run/named.pid";
};
};
EOF
- sed -i -e "s!_BIND_KEY_!${BINDKEY}!g" /home/named/etc/named.conf
+ sed -i -e "s!_BIND_KEY_!${BINDKEY}!g" /srv/named/etc/named.conf
cat > /etc/rndc.conf << "EOF"
key rndc_key {
EOF
sed -i -e "s!_BIND_KEY_!${BINDKEY}!g" /etc/rndc.conf
- cat > /home/named/etc/namedb/pz/127.0.0 << "EOF"
+ cat > /srv/named/etc/namedb/pz/127.0.0 << "EOF"
$TTL 3D
@ IN SOA ns.local.domain. hostmaster.local.domain. (
1 ; Serial
1 PTR localhost.
EOF
- cat > /home/named/etc/namedb/root.hints << "EOF"
+ cat > /srv/named/etc/namedb/root.hints << "EOF"
. 6D IN NS A.ROOT-SERVERS.NET.
. 6D IN NS B.ROOT-SERVERS.NET.
. 6D IN NS C.ROOT-SERVERS.NET.
M.ROOT-SERVERS.NET. 6D IN A 202.12.27.33
EOF
- chown -R named.named /home/named
+ # Needed to solve bug:
+ # initializing DST: openssl failure
+ cp -a /usr/lib/engines /srv/named/usr/lib
+
+ chown -R named.named /srv/named
# Bootscript
install -v -m740 ${SCRDIR}/bootscripts/named /etc/rc.d/init.d