groupadd -g 200 named useradd -m -g named -u 200 -s /bin/false named cd /home/named mkdir -p dev etc/namedb/slave var/run mknod /home/named/dev/null c 1 3 mknod /home/named/dev/random c 1 8 chmod 666 /home/named/dev/{null,random} mkdir /home/named/etc/namedb/pz cp /etc/localtime /home/named/etc : Create the unprivileged user and group named, along with device files that named will need access to inside the chroot jail. cat > /home/named/etc/named.conf << "EOF" : Create the BIND configuration file, from which named will read the location of zone files, root nameservers and secure DNS keys. cat > /home/named/etc/namedb/pz/127.0.0 << "EOF" : Create a single zone file. cat > /home/named/etc/namedb/root.hints << "EOF" : The root.hints file is a list of root nameservers. This file must be updated periodically with the dig utility. Consult the BIND 9 Administrator Reference Manual for details. cat > /etc/rndc.conf << "EOF" : The rndc.conf file contains information for controlling named operations with the rndc utility. cat > /etc/resolv.conf << "EOF" : The resolv.conf file will specify the local host(127.0.0.1) as the nameserver. cat > /etc/rc.d/init.d/bind << "EOF" : Create the boot script for BIND 9, used to start and stop the name server daemon, named.