rndc addzone gets permission denied
Georgy Goshin
georgy.goshin at gmail.com
Sun Jan 12 12:17:59 UTC 2014
Selinux disabled, /var/named/slave is 770 and owned by named. Is there a
way to get any debug output to see which permission is denied?
12.01.2014 11:40 пользователь "Elia Pinto" <dns.spiros at gmail.com> написал:
> It is Selinux related
>
> Try ausearch -m avc for finding. Put named in permissive mode
>
> Best
> Il 12/gen/2014 00:13 "Georgy Goshin" <georgy.goshin at gmail.com> ha scritto:
>
>> Hi,
>>
>> CentOS, 6.5, default bind package bind-9.8.2-0.17.rc1.el6_4.6.x86_64.
>>
>> trying to add slave zone with command rndc addzone "zone.local" '{ type
>> slave; file "slaves/zone.local"; masters { 172.31.199.154; }; };'
>>
>> but getting rndc: 'addzone' failed: permission denied, nothing on the
>> logs, only received control channel command 'addzone zone.local { type
>> slave; file "slaves/zone.local"; masters { 172.31.199.154; }; };' even
>> after rndc trace 99.
>>
>> allow-new-zones yes;
>>
>> tried with chmod 777 for /var/named, /etc/named, /usr/lib64/bind but
>> nothing helps.
>>
>> please advice me a way to find why permission is denied.
>>
>>
>> thanks in advance.
>>
>> _______________________________________________
>> Please visit https://lists.isc.org/mailman/listinfo/bind-users to
>> unsubscribe from this list
>>
>> bind-users mailing list
>> bind-users at lists.isc.org
>> https://lists.isc.org/mailman/listinfo/bind-users
>>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20140112/129a85c8/attachment.html>
More information about the bind-users
mailing list