unix permissions for zone files

Michael Kjorling michael at kjorling.com
Tue Dec 11 15:34:35 UTC 2001


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Well, the user BIND is running as does have to be able to read them.
If you use Dynamic Update then the file and directory containing them
must be writable by BIND as well.

I have all my zone files owned by the user who is in charge of the
domain in question (for simplicty) and a group "dns" which contain
those who should have write access to all zones. Mode 664 for files
and 775 for directories. Works like a charm.

Your logs should tell you something about why the zones won't load. If
not, try increasing the debugging level (that should hardly be
neccessary).


Michael Kjörling


On Dec 11 2001 07:16 -0600, Sean wrote:

> I was just wondering if anymore can tell me: for the zone files, who should
> the owner and group be and what permissions should they have.
>
> My zone files don't seem to be loading and I have noticed the the owner and
> group vary (yikes! i don't know how that happened) between the zone files. I
> suspect that this variance is what is causing the zone files to not load.
>
> I'm running Bind 9.1.0 on a Solris 8 box.
>
> Any help would be appreciated.

- -- 
Michael Kjörling  --  Programmer/Network administrator  ^..^
PGP: 95f1 074d 336d f8f0 f297 6a5b 2aa3 7bfd 8a70 e33e   \/
Internet: michael at kjorling.com -- FidoNet: 2:204/254.4

"There is something to be said about not trying to be glamorous
and popular and cool. Just be real -- and life will be real."
(Joyce Sequichie Hifler, September 13 2001, www.hifler.com)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: Public key is at http://michael.kjorling.com/contact/pgp.html

iD8DBQE8FieRKqN7/Ypw4z4RAqsqAJ9q/nK6XavaxjHX7+HS/3zROfydrwCfZTCh
SqffXCk2Bs1Ro0erPrvoHIw=
=Fv5T
-----END PGP SIGNATURE-----




More information about the bind-users mailing list