location for master file dump
André Rodier
andre at rodier.me
Sat May 26 17:47:35 UTC 2018
On Sat, 2018-05-26 at 18:32 +0100, André Rodier via bind-users wrote:
> Hello,
>
> I am trying to configure bind9 on Debian Stretch, and I have these
> errors:
>
> > May 26 17:41:04 homebox named[29895]: dumping master file: /etc/bind/tmp-bIeOrs2Xus: open: permission denied
> > May 26 17:54:38 homebox named[29895]: dumping master file: /etc/bind/tmp-9iLruAW1CT: open: permission denied
> > May 26 18:07:13 homebox named[29895]: dumping master file: /etc/bind/tmp-3r2ksPB5UI: open: permission denied
>
> I have put this line in my named.conf.options:
>
> dump-file "/var/cache/bind/homebox.space-dump.db"
>
> But it does not seem to be applied. Should I do something else?
>
> I don't want to authorise bind/named to write in the /etc/bind folder.
>
I need to precise, I have also added this option in named.conf.options:
directory "/var/cache/bind";
And bind is creating the journal files inside:
-rw-r--r-- 1 bind bind 1.4K May 26 18:36 managed-keys.bind
-rw-r--r-- 1 bind bind 512 May 26 18:36 managed-keys.bind.jnl
However, when started, bind is apparently trying to write in /etc/bind anyway:
> May 26 18:36:01 homebox named[1298]: managed-keys-zone: journal file is out of date: removing journal file
> May 26 18:36:01 homebox named[1298]: managed-keys-zone: loaded serial 2
> May 26 18:36:01 homebox named[1298]: zone 0.in-addr.arpa/IN: loaded serial 1
> May 26 18:36:01 homebox named[1298]: zone auto.in-addr.arpa/IN: loaded serial 1527352056
> May 26 18:36:01 homebox named[1298]: zone 127.in-addr.arpa/IN: loaded serial 1
> May 26 18:36:01 homebox named[1298]: zone 255.in-addr.arpa/IN: loaded serial 1
> May 26 18:36:01 homebox named[1298]: zone localhost/IN: loaded serial 2
> May 26 18:36:01 homebox named[1298]: zone homebox.space/IN (unsigned): loaded serial 1527352055
> May 26 18:36:01 homebox named[1298]: all zones loaded
> May 26 18:36:01 homebox named[1298]: running
> May 26 18:36:01 homebox named[1298]: zone homebox.space/IN (signed): loaded serial 1527352055
> May 26 18:36:01 homebox named[1298]: zone auto.in-addr.arpa/IN: sending notifies (serial 1527352056)
> May 26 18:36:01 homebox named[1298]: /etc/bind/forward.homebox.space.jbk: create: permission denied
> May 26 18:36:01 homebox named[1298]: zone homebox.space/IN (signed): receive_secure_serial: unexpected error
> May 26 18:36:01 homebox named[1298]: zone homebox.space/IN (signed): sending notifies (serial 1527352055)
> May 26 18:36:01 homebox named[1298]: zone homebox.space/IN (signed): reconfiguring zone keys
> May 26 18:36:01 homebox named[1298]: /etc/bind/forward.homebox.space.signed.jnl: create: permission denied
> May 26 18:36:01 homebox named[1298]: zone homebox.space/IN (signed): zone_rekey:dns_journal_open -> unexpected error
> May 26 18:36:01 homebox named[1298]: dumping master file: /etc/bind/tmp-x3z2z6mg5k: open: permission denied
Any reason for that?
Thanks for your help!
More information about the bind-users
mailing list