From owner-freebsd-questions Mon Mar 12 0:13:29 2001 Delivered-To: freebsd-questions@freebsd.org Received: from mail.nbrewer.com (sparge.nbrewer.com [208.42.68.70]) by hub.freebsd.org (Postfix) with ESMTP id E8B7237B718 for ; Mon, 12 Mar 2001 00:13:26 -0800 (PST) (envelope-from chris@nbrewer.com) Received: by mail.nbrewer.com (Postfix, from userid 1001) id 364C6383071; Mon, 12 Mar 2001 02:13:26 -0600 (CST) Date: Mon, 12 Mar 2001 02:13:25 -0600 From: Christopher Farley To: Eugene Lee Cc: freebsd-questions@FreeBSD.ORG Subject: Re: /var/run/named.pid annoyance Message-ID: <20010312021324.D78116@northernbrewer.com> Mail-Followup-To: Christopher Farley , Eugene Lee , freebsd-questions@FreeBSD.ORG References: <20010311230428.B18069@anime.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <20010311230428.B18069@anime.net>; from eugene@anime.net on Sun, Mar 11, 2001 at 11:04:28PM -0800 Organization: Northern Brewer, St. Paul, MN Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Eugene Lee (eugene@anime.net) wrote: > Every time I do a reload, I get this in /var/log/messages: > > Mar 12 00:48:47 localhost named[119]: reloading nameserver > Mar 12 00:48:47 localhost named[119]: couldn't create pid file '/var/run/named.pid' > Mar 12 00:48:47 localhost named[119]: Ready to answer queries. > > The reason for this is that I run it with "-u bind -g bind" options. > What would be the most secure way to solve this problem? This is a permissions problem. User bind does not have permissions to write files to /var/run. The desired workaround is to change the PID file location by adding this to the "options" section of your /etc/namedb/named.conf file: pid-file "/var/named/named.pid" You must then (as root): # mkdir /var/named # chown bind:bind /var/named More details on this setup are available at: ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01%3A18.bind.asc -- Christopher Farley www.northernbrewer.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message