Adam Tkac <atkac at redhat.com> writes: > Also complete /var/named/* subtree will be writable by named This is bad. Only the slaves/ and data/ (for DDNS) dirs must be writable. pz/ and the other parts of the chroot filesystem must be read-only for named. Enrico