Re: Setting up DNS Primary and Secondary Server
On Wed, Nov 03, 2004 at 12:01:56PM -0500, Jeff Self wrote:
> Date: Wed, 03 Nov 2004 12:01:56 -0500
> From: Jeff Self <jself@nngov.com>
> Organization: City of Newport News
> X-Mailer: Evolution 2.0.2
> To: debian-user@lists.debian.org
> Subject: Re: Setting up DNS Primary and Secondary Server
>
> On Wed, 2004-11-03 at 10:06 -0500, Jeff Self wrote:
> > I've successfully set up a Primary DNS server with Bind9. I've used the
> > instructions from the Debian Network Administrator's Guide. I also
[snip]
> 10.5.107.12#53: end of transfer
> > Nov 3 09:59:48 utils2 named[1912]: dumping master
> > file: /etc/bind/tmp-XXXXF424uu: open: permission denied
> > Nov 3 09:59:48 utils2 named[1912]: transfer of
> > '107.5.10.in-addr.arpa/IN' from 10.5.107.12#53: failed while receiving
> > responses: permission denied
> > Nov 3 09:59:48 utils2 named[1912]: transfer of
> > '107.5.10.in-addr.arpa/IN' from 10.5.107.12#53: end of transfer
> >
> > Why am I getting permission denied? Port 53 is open. What is the
> > master file? I don't see anything called tmp-XXXXF424uu or similar.
> >
>
> Got it working. Had to change the permissions of /etc/bind from 2755 to
> 2775 so that the bind user could write to the directory.
I don't think it's a good idea to give bind write access to /etc/bind
IMHO. If you read /usr/share/doc/bind/bind9/README.Debian.gz you'll find
that default install use /var/cache/bind as working directory and saves
slave zones there. I think you've changed directory setting under
"options" section of named.conf. Set directory to "/var/cache/bind" and
use full path names for master zones, and relative for slave zones.
Good luck!
Reply to: