rndc: permission denied
Michael Kjorling
michael at kjorling.com
Mon Apr 1 10:01:30 UTC 2002
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Mar 31 2002 14:48 -0500, Robert Huff wrote:
> rndc: connect failed: connection refused
>
> and in syslog:
>
> Mar 31 14:39:54 jerusalem named[397]: /etc/namedb/named.conf:31:
> couldn't add command channel ::1#953: permission denied
>
> What am I missing?
Most likely you're running named as a non-root user and using
rndc reconfig to activate the command channel at ::1#953. Since 953 is
less than 1024, you need to be root to be able to bind to that port.
Restart named and you should be fine. There is no problem with using
- -u to set it to run as an unprivileged user, but it needs to grab
ports 53 and 953 before switching euid/egid.
Michael Kjörling
- --
Michael Kjörling -- Programmer/Network administrator ^..^
Internet: michael at kjorling.com -- FidoNet: 2:204/254.4 \/
PGP: 95f1 074d 336d f8f0 f297 6a5b 2aa3 7bfd 8a70 e33e
``And indeed people sometimes speak of man's "bestial" cruelty, but
this is very unfair and insulting to the beasts: a beast can never be
so cruel as a man, so ingeniously, so artistically cruel.''
(Ivan Karamazov, in Dostoyevsky's 'The Brothers Karamazov')
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: Public key is at http://michael.kjorling.com/contact/pgp.html
iD8DBQE8qC//KqN7/Ypw4z4RAq7bAKDzh0cM/Y/PtSX2yeWXQ3E916sMfwCguE1h
eL2aqvI0LBQ0BZJhGjwTJ18=
=1Y6X
-----END PGP SIGNATURE-----
More information about the bind-users
mailing list