Date: Thu, 02 Oct 2014 18:42:49 +0000 From: bugzilla-noreply@freebsd.org To: freebsd-bugs@FreeBSD.org Subject: [Bug 194098] New: Incorrect permissions on bind chroot 'master' directory Message-ID: <bug-194098-8@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=194098 Bug ID: 194098 Summary: Incorrect permissions on bind chroot 'master' directory Product: Base System Version: 9.3-RELEASE Hardware: Any OS: Any Status: Needs Triage Severity: Affects Some People Priority: --- Component: conf Assignee: freebsd-bugs@FreeBSD.org Reporter: matt@conundrum.com According to /etc/mtree/BIND.chroot.dist the permissions of /var/named/etc/named/master inherits an owner:group of root:wheel with the mode 0755. This should either be bind:wheel 0755 or root:bind 0775. Turning on ixfr-from-differences will cause BIND to try to write a journal file to the master directory, which it will attempt using the user:group of bind:bind. There is no way to force the journal file to any other directory except where the master file resides. How-To-Repeat: * enable ixfr-from-differences in the options stanza * update a zone with type master * issue an 'rndc reload' for the zone A temporary workaround of moving master files into /var/named/etc/namedb/dynamic is possible, but ignores the conceptual separation of zone types. -- You are receiving this mail because: You are the assignee for the bug.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-194098-8>