Skip site navigation (1)Skip section navigation (2)
Date:      Sun, 12 Oct 2014 10:59:56 -0700
From:      "Ronald F. Guilmette" <rfg@tristatelogic.com>
To:        freebsd-net@freebsd.org
Subject:   Re: A couple of trivial BIND (dynamic update) questions
Message-ID:  <28907.1413136796@server1.tristatelogic.com>
In-Reply-To: <543A4244.1000401@FreeBSD.org>

next in thread | previous in thread | raw e-mail | index | archive | help

In message <543A4244.1000401@FreeBSD.org>, 
Matthew Seaman <matthew@FreeBSD.org> wrote:

>On 12/10/2014 02:05, Ronald F. Guilmette wrote:
>...
>>     /var/named/var/run/named/session.key
>>
>> So, um, how come?  The default location wasn't good enough?
>
>You're running chrooted to /var/named.  All paths will have /var/named
>tacked onto the front.

Ah!  OK.  It makes sense now.

>> So, um, what is the Right Solution here?  Do I need to re-jigger
>> the permissions on /var/named/etc/namedb/master to 0775 and then
>> add user-ID "bind" to the wheel group in /etc/groups?
>
>/var/named/etc/namedb/master is for zones where the data is managed by
>means other than dynamic update.
>
>If you're using dynamic update, then create a new directory
>/ver/named/etc/namedb/dynamic and make it mode 755 but owned by the bind
>UID and GID (similar to the slave directory).  Use that for storing the
>data for all your dynamic update zones.

OK, thanks much.  I will certainly do that.

(In fact, that is so obviously the correct solution that I am a bit
embarassed that I didn't just think of it myself.)



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?28907.1413136796>