this is how i do it, from rc.conf:


syslogd=YES             syslogd_flags="-p /var/run/log -p /etc/namedb/var/run/log"
named=YES               named_flags="-t /etc/namedb -u named"


there are a few more details, but someone should make it standard..
(eg: secondary files need to be writable by `named', /var/run/ndc
is wrong ... hmm, it used to work with a hack i made though, must
have gotten lost in a bind upgrade sometime, you also need named-xfer
inside the chroot.)


there are really two parts to this:

	- run as non-root

	- run as chroot


and bind provides the options for both, even if dynamically linked.
the bit that you do want static is named-xfer, though.


it would be wonderful if someone made it the default.


.mrg.