Re: git: 1d577bedbae8 - main - unbound: Fix config file path
- In reply to: Rodney W. Grimes: "Re: git: 1d577bedbae8 - main - unbound: Fix config file path"
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Mon, 06 Mar 2023 15:37:23 UTC
"Rodney W. Grimes" <freebsd@gndrsh.dnsmgr.net> writes: > "Dag-Erling Smørgrav <des@freebsd.org> writes: > > No. Unbound knows it's chrooted, knows _where_ it's chrooted, and > > adjusts config paths accordingly, cf. e4c53d3bf00a. > We disagree then, rather strongly, about this issue. It should not > know it is chrooted, and it especially should NOT adjust paths > based on that fact. That is a POLA, and it is also hard coding > POLICY into an executable. Almost certainly any path mangling > done because it is chroot is going to break if I chroot it to > some place very different. With all due respect, you're talking out of your ass. > > Also note that the local-unbound configuration is not meant to be > > user-serviceable. > That, again IMHO, is a rather SIC stance to take for a caching > DNS server, especially one as flexable as unbound. The local-unbound service is not a caching DNS server. If that's what you want there are plenty of options in ports, including Unbound. The local-unbound service is a caching resolver which is supposed to Just Work even in the most difficult ciscumstances (roaming laptops, captive portals, DNS-intercepting CPE, etc.) DES -- Dag-Erling Smørgrav - des@des.no