[Bug 447847] New: Review Request: unbound - Validating, recursive, and caching DNS(SEC) resolver
by Red Hat Bugzilla
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug report.
https://bugzilla.redhat.com/show_bug.cgi?id=447847
Summary: Review Request: unbound - Validating, recursive, and
caching DNS(SEC) resolver
Product: Fedora
Version: rawhide
Platform: All
OS/Version: Linux
Status: NEW
Severity: medium
Priority: medium
Component: Package Review
AssignedTo: nobody(a)fedoraproject.org
ReportedBy: paul(a)xelerance.com
QAContact: extras-qa(a)fedoraproject.org
CC: fedora-package-review@redhat.com,notting(a)redhat.com
Spec URL: ftp://ftp.xelerance.com/unbound/unbound.spec
SRPM URL: tp://ftp.xelerance.com/unbound/unbound-1.0.0-1.src.rpm
Description: Unbound is a validating, recursive, and caching DNS(SEC) resolver.
The C implementation of Unbound is developed and maintained by NLnet
Labs. It is based on ideas and algorithms taken from a java prototype
developed by Verisign labs, Nominet, Kirei and ep.net.
Unbound is designed as a set of modular components, so that also
DNSSEC (secure DNS) validation and stub-resolvers (that do not run
as a server, but are linked into an application) are easily possible.
output from rpmlint:
unbound.x86_64: E: non-standard-uid /var/unbound unbound
unbound.x86_64: E: non-standard-gid /var/unbound unbound
unbound.x86_64: E: non-standard-dir-perm /var/unbound 0700
unbound.x86_64: E: non-standard-uid /var/unbound/unbound.conf unbound
unbound.x86_64: E: non-standard-gid /var/unbound/unbound.conf unbound
unbound.x86_64: W: non-standard-dir-in-var unbound
unbound.x86_64: W: dangerous-command-in-%preun rm
unbound.x86_64: W: incoherent-subsys /etc/rc.d/init.d/unbound $prog
Currently talking to upstream about the problem of including a static ldns shipped with unbound, versus using the real standaline ldns.
The dangerous rm in %preun is the chroot /var/unbound getting cleaned up. The chroot() is currently somewhat variable, eg needing the real /etc/resolv.conf, which is manipulated in the init script, since hard links might not work across /etc/ and /var
I am not sure about the incoherent-subsys warning. It seems similar to other packages used. Using prog=$(basename $exec) did not help.
--
Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
15 years, 5 months