ÀÌ ¹®¼´Â BINDÆÐÅ°Áö¸¦ ¼³Ä¡ ÇÒ¶§ Ãß°¡ÀûÀÎ º¸¾È»çÇ׿¡ ´ëÇÏ¿© ¼³¸íÇÑ´Ù. ±×°ÍÀº bindÆÐÅ°Áö°¡ 'chroot'¿ÜºÎ·Î Àаųª ´Ù¸¥ Çã°¡±ÇÀ» °¡Áú¼ö ¾øµµ·Ï ¼³Á¤Çϴ°ÍÀ» ÀǹÌÇÑ´Ù. ¶ÇÇÑ ÀÌ°ÍÀº 'root'(½Ã½ºÅÛ °ü¸®ÀÚ)ÀÌ¿ÜÀÇ »ç¿ëÀڷμ ¼³Á¤ÇÒ¼ö ÀÖµµ·Ï ÇÒ°ÍÀÌ´Ù. chroot¿¡ µÚÀÇ ÀÌ °úÁ¤Àº °£´ÜÇÏ´Ù. BIND³ª ´Ù¸¥ ¾î¶² processµµ chroot ¿¡¼ ¼öÇàµÇµµ·Ï Çϸé chroot Àܸ̿¦ º¸°Å³ª ´Ù¸¥ filesystemÀ» Àд°ÍÀº ºÒ°¡´ÉÇÏ´Ù. ¿¹¸¦ µé¸é ÀÌ ¹®¼ ¾È¿¡¼ BIND¸¦ µð·ºÅ丮/chroot/named¿¡ chrootedµÇ°Ô ¼³Á¤ÇÒ °ÍÀÌ´Ù. ±×·¸°Ô µÈ´Ù¸é BIND·Î½á´Â ÀÌ ¹®¼°¡ ÀÖ´Â ÇöÀç µð·ºÅ丮¸¦ / À¸·Î ¾Ë°ÔµÈ´Ù.Áï chroot ¿ÜÀÇ µð·ºÅ丮¿¡ ´ëÇÑ Çã°¡±ÇÀÌ ¾ø¾îÁö´Â°ÍÀÌ´Ù. ¾Æ¸¶ Anonymous FTP·Î ¼ºñ½º Çϴ°÷¿¡ ·Î±×ÀÎ ÇÏ¿´´Ù¸é chroot¿¡ ´ëÇؼ ¾Ë°ÍÀÌ´Ù.
chroot·Î BIND¸¦ ¿î¿µÇÏ´Â °ÍÀº ¾ÇÀÇÀûÀÎ »ç¿ëÀÚµé·ÎºÎÅÍ BIND¸¦ ¿î¿µ½Ã ¹ß»ýÇÒ¼ö ÀÖ´Â À§ÇèÀ» Á¦ÇÑ Çϱâ À§ÇÔÀÌ´Ù. °°Àº ÀÌÀ¯·Î BIND¸¦ root(½Ã½ºÅÛ ¿î¿µÀÚ)°¡ ¾Æ´Ñ »ç¿ëÀڷκÎÅÍ ¿î¿µÇÏ°íÀÚ ÇÑ´Ù.
¹®¼ÀÇ ÃÖ±ÙÀº ´ÙÀ½¿¡¼ ¾òÀ»¼ö ÀÖ´Ù. www.losurs.org/docs/howto/Chroot-BIND.html BIND´Â the Internet Software Consortium ¿¡¼ Áï www.isc.org/bind.html ¿¡¼ ¾òÀ»¼ö ÀÖ°í ÃÖ±ÙÀÇ °¡Àå ÃֽŠ¹öÀüÀº 8.2.2_P5 ÀÌ´Ù. 1.4¿Í 1.5´Â »ý·«ÇÕ´Ï´Ù.
wrote this document based on my experiences in setting BIND up in a chroot environment. In my case, I already had an existing BIND installation in the form of a package that came with my Linux distribution. I'll assume that most of you are probably in the same situation, and will simply be transferring over and modifying the configuration files from your existing BIND installation, and then removing the package before installing the new one. Don't remove the package yet, though; we may want some files from it first. If this is not the case for you, you should still be able to follow this document. The only difference is that, where I refer to copying an existing file, you first have to create it yourself. The DNS HOWTO may be helpful for this.
These steps worked for me, on my system. Your mileage may vary. This is but one way to approach this; there are other ways to set the same thing up (although the general approach will be the same). My BIND experience to date has been installing on Linux servers. However, most of the instructions in this document should be easily applicable to other flavours of UNIX as well, and I shall try to point out differences of which I am aware.