12957 – The bind_dlz config should not be stored in the private directory

Bug 12957 - The bind_dlz config should not be stored in the private directory

Summary: The bind_dlz config should not be stored in the private directory

Status:	RESOLVED FIXED

Alias:	None

Product:	Samba 4.1 and newer
Classification:	Unclassified
Component:	DNS server (internal) (show other bugs)
Version:	4.7.0rc3
Hardware:	All All

Importance:	P5 normal (vote)
Target Milestone:	---
Assignee:	Andreas Schneider
QA Contact:	Samba QA Contact

URL:
Keywords:

Depends on:
Blocks:

Reported:	2017-08-10 09:42 UTC by Andreas Schneider
Modified:	2018-02-20 00:38 UTC (History)
CC List:	2 users (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Andreas Schneider 2017-08-10 09:42:20 UTC

The bind_dlz config should not be stored in the private directory.

The private directory should have permissions 0700 and only samba (root) should have access to it.

bind_dns should have its own directory and so we can give named access to it.

Comment 1 Stefan Metzmacher 2017-08-14 07:55:44 UTC

(In reply to Andreas Schneider from comment #0)

Don't we already have a directory for this? The one where we store the hardlinks
of the sam.ldb* files. So we just need to move the config files to the same directory?

Comment 2 Andreas Schneider 2017-08-14 09:50:50 UTC

That directory is inside the private directory! So it doesn't really help.

My WIP branch is here:
https://git.samba.org/?p=asn/samba.git;a=shortlog;h=refs/heads/master-bind_dlz

Comment 3 Andreas Schneider 2017-10-12 14:59:48 UTC

Will be fixed with 4.8.0

Comment 4 Andrew Bartlett 2018-02-20 00:38:23 UTC

Fixed in master with 2d0e13837d8c6fab3fb296aafcabdf2a2973b96d