> On Tue, Apr 01, 2008 at 05:57:01PM +0100, Lars Hecking wrote:
> > Adam Tkac writes:
> > [...]
> > > After quick look into bind and glibc code /proc has to be mounted.
> > > named calls sysconf(3) function and internal glibc implementation
> > > looks like this:

> > [...]
> >
> > Not that I have looked at the code, but maybe bind should grab this info
> > before dropping privileges and going to jail ...
> >

>
> Yes, this will be the best long term solution. I'm going to prepare
> simple patch to fix this problem.
>
> Adam
>
> --
> Adam Tkac, Red Hat, Inc.


/proc is also needed for IPv6 interface scanning.

This is a design fault in Linux.
The correct fix is to correct the design fault in the OS.

Mark
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: Mark_Andrews@isc.org