PDA

View Full Version : [ubuntu] Bind9 Permission Denied from Apparmor



edthetoad
January 18th, 2011, 03:04 PM
When I attempt to start bind9 I see in the system log
/etc/bind/named.conf.local:4: open:/home/administrator2/apples.conf: permission denied
type=1400 audit(1295359149.893:40): apparmor="Denied" operation="open" parent=7421 profile="usr/sbin/named" name="home/administrator2/apples.conf" pid=7426 comm="named: requested_mask="r" denied_mask="r" fsuid=115 ouid-115

I have moved the configuration file that bind is trying to load to my home folder. I have changed the owner to bind and ran bind as root. How do I make bind load this file?

SeijiSensei
January 18th, 2011, 04:19 PM
I have moved the configuration file that bind is trying to load to my home folder. I have changed the owner to bind and ran bind as root. How do I make bind load this file?

What are the permissions on your home folder? You'll need at least 0755 so that named can read the file.

Moving configuration files for servers is almost never a good idea.

edthetoad
January 21st, 2011, 02:13 PM
I moved the configuration file back set the permission to 0755 and it now just says /etc/bind/named.conf.local:4: open: /usr/local/samba/private/named.conf: permission denied. What should i do now?

SeijiSensei
January 21st, 2011, 02:48 PM
I moved the configuration file back set the permission to 0755 and it now just says /etc/bind/named.conf.local:4: open: /usr/local/samba/private/named.conf: permission denied. What should i do now?

Fix line four of /etc/bind/named.conf.local so it points to the correct location.