unable to delzone

Scott A. Wozny sawozny at hotmail.com
Mon Oct 12 18:41:53 UTC 2020


There are a LOT of possibilities why this isn't working.  The first two things I'd check is trying this action again as root (if you're not already) to make sure this action isn't trying something that's DAC prohibited and checking the SELinux / AppArmor log (if you're running them) to see if this particular action (it doesn't sound like it's something you do often) is making a system call that's forbidden by the MAC.

These are suggestions to see if the issue is at the OS level, of course.  I'm assuming what you're doing is permitted in the application (i.e. the zone you're trying to delete was created with rndc addzone) but you haven't provided enough detail to determine that.

HTH,

Scott

________________________________
From: bind-users <bind-users-bounces at lists.isc.org> on behalf of BÖSCH Christian <boesch at fhv.at>
Sent: October 12, 2020 4:35 AM
To: bind-users at lists.isc.org <bind-users at lists.isc.org>
Subject: unable to delzone


Hi,



I want to delete a zone with:

rndc delzone domain.org



In the logfile I get:

Oct 12 10:16:30 nsmaster named[669]: general: received control channel command 'delzone domain.org'

Oct 12 10:16:30 nsmaster named[669]: general: zone domain.org scheduled for removal via delzone

Oct 12 10:16:30 nsmaster named[669]: general: deleting zone domain.org in view _default via delzone

Oct 12 10:16:30 nsmaster named[669]: general: mdb_txn_begin: Invalid argument

Oct 12 10:16:30 nsmaster named[669]: general: unable to open NZD database for '_default.nzd'

Oct 12 10:16:30 nsmaster named[669]: general: unable to delete zone configuration: failure



And so in the nzd db the config remains active:

named-nzd2nzf _default.nzd | grep domain.org

zone "domain.org" { type master; file "../dynamic/domain.org"; };



So why can the nzd db not be opened? And how can that be solved?



Thanks in advance,

Christian


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20201012/f190b6f2/attachment.htm>


More information about the bind-users mailing list