[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] running named -u named
- Subject: Re: [cobalt-security] running named -u named
- From: "David Garcia Watkins" <dgw@xxxxxxxxxxx>
- Date: Fri, 15 Jun 2001 10:45:53 +0200
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
You also have to change the ownership of the configuration folder:
chown -R named.named /etc/named
Otherwise you will have problems when doing zone transfers.
Regards
David Garcia Watkins
dgw@xxxxxxxxxxx
----- Original Message -----
> > i changed my init.d/named script so that it runs named as
> >
> > named -u named -g named
> >
> > but it has permission problems:
> >
> > Jun 15 12:13:48 www named[2884]: unix control "/var/run/ndc" unlink
failed: Permission denied
> > Jun 15 12:13:48 www named[2884]: ctl_server: bind: /var/run/ndc: Address
already in use
> > Jun 15 12:13:48 www named[2884]: couldn't create pid file
'/var/run/named.pid'
> >
> > i can't really make /var/run/ writable by public?
> >
> > or do i make a directory /var/run/named/ and chown it named?
> >
> as root
> kill named
> chown named /var/run/ndc
> chgrp named /var/run/ndc
> chown named /var/run/named.pid
> chgrp named /var/run/named.pid
> run named
>
> should work,
>
> - shimi