Re: rndc addzone gets permission denied

2014-01-13 Thread Georgy Goshin
Seems previously I made some mistake when tried to make writable /var/named... Currently chmod g+w /var/named resolved the problem. Thanks to all! 2014/1/13 Leonard Mills > You previously showed your unsuccessful rndc command. It contained: > 'type slave; file "slaves/zone.local"; > > Un

Re: rndc addzone gets permission denied

2014-01-13 Thread Leonard Mills
You previously showed your unsuccessful rndc command.  It contained: 'type slave; file "slaves/zone.local"; Unless you override the defaults, that says: "use the file /var/named/slaves/zone.local". So it appears that the directory /var/named/slaves was not writable. Hth, Len On Su

Re: rndc addzone gets permission denied

2014-01-12 Thread Georgy Goshin
Mark, I've read the phrase a lot ) What't is the working directory for named in Centos 6 installation? I already tried to chmod 777 /var/named /etc/named /usr/lib64/bind... 2014/1/13 Mark Andrews > > It is trying to create a .nzf (new zone file) file in the working > directory. > > -- > Mark An

Re: rndc addzone gets permission denied

2014-01-12 Thread Mark Andrews
It is trying to create a .nzf (new zone file) file in the working directory. -- Mark Andrews, ISC 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET: ma...@isc.org ___ Please visit https://lists.isc.org/ma

Re: rndc addzone gets permission denied

2014-01-12 Thread David Forrest
On Sun, 12 Jan 2014, Georgy Goshin wrote: named -g too shows only received command and do not shows which permission is denied 12-Jan-2014 19:42:48.133 received control channel command 'addzone zone.local { type slave; file "slaves/zone.local"; masters { 172.31.199.154; }; };' 12-Jan-2014 19:43

Re: rndc addzone gets permission denied

2014-01-12 Thread Georgy Goshin
named -g too shows only received command and do not shows which permission is denied 12-Jan-2014 19:42:48.133 received control channel command 'addzone zone.local { type slave; file "slaves/zone.local"; masters { 172.31.199.154; }; };' 12-Jan-2014 19:43:05.826 received control channel command 'add

Re: rndc addzone gets permission denied

2014-01-12 Thread David Forrest
I slaved the root zone without a file statement in my named.conf for the slaved file and it worked. I added the file statement later to my named.con as I wanted a local copy for quicker startup. I think I may have touched the file to get it started though. When I finally looked at it, I foun

Re: rndc addzone gets permission denied

2014-01-12 Thread Phil Mayers
On 12/01/14 12:17, Georgy Goshin wrote: Selinux disabled, /var/named/slave is 770 and owned by named. Is there a It should go without saying that wholesale disabling of SELinux, if your distro enables it by default, is unwise. If you must, set the specific daemon to disabled. We run with SE

Re: rndc addzone gets permission denied

2014-01-12 Thread Georgy Goshin
Selinux disabled, /var/named/slave is 770 and owned by named. Is there a way to get any debug output to see which permission is denied? 12.01.2014 11:40 пользователь "Elia Pinto" написал: > It is Selinux related > > Try ausearch -m avc for finding. Put named in permissive mode > > Best > Il 12/ge

Re: rndc addzone gets permission denied

2014-01-12 Thread Elia Pinto
It is Selinux related Try ausearch -m avc for finding. Put named in permissive mode Best Il 12/gen/2014 00:13 "Georgy Goshin" ha scritto: > Hi, > > CentOS, 6.5, default bind package bind-9.8.2-0.17.rc1.el6_4.6.x86_64. > > trying to add slave zone with command rndc addzone "zone.local" '{ type >

Re: rndc addzone gets permission denied

2014-01-12 Thread Jan-Piet Mens
> but getting rndc: 'addzone' failed: permission denied, nothing on the logs, > only received control channel command 'addzone zone.local { type slave; > file "slaves/zone.local"; masters { 172.31.199.154; }; };' even after rndc > trace 99. > > allow-new-zones yes; > > tried with chmod 777 for /var

Re: rndc addzone gets permission denied

2014-01-11 Thread Jason Hellenthal
I would suspect your chmod 777 was inappropriate as I believe you should have just chmod'd var/named/slaves. The chmod isn't inheritable like windows. -- Jason Hellenthal Voice: 95.30.17.6/616 JJH48-ARIN > On Jan 11, 2014, at 19:11, Mikael Johansson > wrote: > > On 12 Jan 2014 00:14, Geo

Re: rndc addzone gets permission denied

2014-01-11 Thread Mikael Johansson
On 12 Jan 2014 00:14, Georgy Goshin wrote: > > Hi, > > CentOS, 6.5, default bind package bind-9.8.2-0.17.rc1.el6_4.6.x86_64. > > trying to add slave zone with command rndc addzone "zone.local" '{ type > slave; file "slaves/zone.local"; masters { 172.31.199.154; }; };' > > but getting rndc: 'addzo

rndc addzone gets permission denied

2014-01-11 Thread Georgy Goshin
Hi, CentOS, 6.5, default bind package bind-9.8.2-0.17.rc1.el6_4.6.x86_64. trying to add slave zone with command rndc addzone "zone.local" '{ type slave; file "slaves/zone.local"; masters { 172.31.199.154; }; };' but getting rndc: 'addzone' failed: permission denied, nothing on the logs, only rec