i386/76775: BIND9 and dynamic updates
Paul B
pabelanger at codeslingers.ca
Thu Jan 27 15:10:34 PST 2005
>Number: 76775
>Category: i386
>Synopsis: BIND9 and dynamic updates
>Confidential: no
>Severity: non-critical
>Priority: low
>Responsible: freebsd-i386
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: sw-bug
>Submitter-Id: current-users
>Arrival-Date: Thu Jan 27 23:10:31 GMT 2005
>Closed-Date:
>Last-Modified:
>Originator: Paul B
>Release: RELENG_5_3
>Organization:
CodeSlingers
>Environment:
FreeBSD router1 5.3-RELEASE-p5 FreeBSD 5.3-RELEASE-p5 #1: Mon Jan 24 17:34:10 EST 2005 root at router1:/usr/obj/usr/src/sys/MYKERNEL i386
>Description:
It seems that named does not have proper permissions to write to /etc/named/master.
Please refer to http://lists.freebsd.org/pipermail/freebsd-current/2004-November/042203.html for the orginal problem and solutions.
Nov 2 22:40:31 vimes named[98525]: client 213.187.177.2#54260: updating
zone 'aminor.no/IN': adding an RR at 'jolie.aminor.no' A
Nov 2 22:40:31 vimes named[98525]: journal file
master/aminor.no.zone.jnl does not exist, creating it
Nov 2 22:40:31 vimes named[98525]: master/aminor.no.zone.jnl: create:
permission denied
Nov 2 22:40:31 vimes kernel: Nov 2 22:40:31 vimes named[98525]:
master/aminor.no.zone.jnl: create: permission denied
Nov 2 22:40:31 vimes named[98525]: client 213.187.177.2#54260: updating
zone 'aminor.no/IN': error: journal open failed: unexpected error
>How-To-Repeat:
named.conf
acl example-lan {
192.168.0.0/24;
127.0.0.1;
};
zone "example.com" {
type master;
file "master/example.com";
allow-update {
example-lan;
};
};
>Fix:
Index: mtree/BIND.chroot.dist
===================================================================
RCS file: /src/FreeBSD/ncvs/src/etc/mtree/BIND.chroot.dist,v
retrieving revision 1.5
diff -u -r1.5 BIND.chroot.dist
--- mtree/BIND.chroot.dist 29 Sep 2004 03:43:10 -0000 1.5
+++ mtree/BIND.chroot.dist 3 Nov 2004 18:45:06 -0000
@@ -9,6 +9,8 @@
..
etc
namedb
+ dynamic uname=bind
+ ..
master
..
slave uname=bind
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-i386
mailing list