Configuración Servidor de Zona

javihd · #1 (**permalink**) 31/05/2011, 01:27

Hola,

He configurado un servidor DNS y cuando lo inicio falla, he mirado en el log messages y el único error que veo es el siguiente, lo demás parece estar bien:

Código:

May 31 08:17:58 servidor named-sdb[4909]: /etc/rndc.key:7: unknown option 'options'
May 31 08:17:58 servidor named-sdb[4909]: couldn't add command channel 127.0.0.1#953: failure
May 31 08:17:58 servidor named-sdb[4909]: /etc/rndc.key:7: unknown option 'options'
May 31 08:17:58 servidor named-sdb[4909]: couldn't add command channel ::1#953: failure
May 31 08:17:58 servidor named-sdb[4909]: the working directory is not writable
May 31 08:17:58 servidor named-sdb[4909]: isc_stdio_open 'data/named.run' failed: permission denied
May 31 08:17:58 servidor named-sdb[4909]: configuring logging: permission denied
May 31 08:17:58 servidor named-sdb[4909]: loading configuration: permission denied
May 31 08:17:58 servidor named-sdb[4909]: exiting (due to fatal error)

¿por qué me aparecen problemas de permisos?

Estos son los permisos y propietarios de ese archivo:

Código:

ls -l /etc/rndc.key 
-rw-r----- 1 root named 77 may 28 16:54 /etc/rndc.key

Saludos

javihd · #2 (**permalink**) 31/05/2011, 01:35

No tengo ningún usuario ni grupo con el nombre 'named' , por lo que supongo que sea por eso.

¿Hago que el grupo y el usuario sea root para ese archivo? ¿o tiene que ser el usuario named?

¿Cómo lo hacéis?

javihd · #3 (**permalink**) 31/05/2011, 01:39

He probado con root como grupo y propietario, pero sigue saliendo el mismo mensaje de permisos.

Código:

May 31 08:36:28 servidor named-sdb[5218]: starting BIND 9.7.4b1-RedHat-9.7.4-0.1.b1.fc14 -u named -t /var/named/chroot
May 31 08:36:28 servidor named-sdb[5218]: built with '--build=x86_64-redhat-linux-gnu' '--host=x86_64-redhat-linux-gnu' '--program-prefix=' '--disable-dependency-tracking' '--prefix=/usr' '--exec-prefix=/usr' '--bindir=/usr/bin' '--sbindir=/usr/sbin' '--sysconfdir=/etc' '--datadir=/usr/share' '--includedir=/usr/include' '--libdir=/usr/lib64' '--libexecdir=/usr/libexec' '--sharedstatedir=/var/lib' '--mandir=/usr/share/man' '--infodir=/usr/share/info' '--with-libtool' '--localstatedir=/var' '--enable-threads' '--enable-ipv6' '--with-pic' '--disable-static' '--disable-openssl-version-check' '--with-pkcs11=/usr/lib64/pkcs11/PKCS11_API.so' '--with-dlz-ldap=yes' '--with-dlz-postgres=yes' '--with-dlz-mysql=yes' '--with-dlz-filesystem=yes' '--with-gssapi=yes' '--disable-isc-spnego' 'build_alias=x86_64-redhat-linux-gnu' 'host_alias=x86_64-redhat-linux-gnu' 'CFLAGS= -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector --param=ssp-buffer-size=4 -m64 -mtune=generic' 'CPPFLAGS= -DDIG_SIGCHASE'
May 31 08:36:28 servidor named-sdb[5218]: adjusted limit on open files from 1024 to 1048576
May 31 08:36:28 servidor named-sdb[5218]: found 4 CPUs, using 4 worker threads
May 31 08:36:28 servidor named-sdb[5218]: using up to 4096 sockets
May 31 08:36:28 servidor named-sdb[5218]: SDB ldap zone database module loaded.
May 31 08:36:28 servidor named-sdb[5218]: SDB postgreSQL DB zone database module loaded.
May 31 08:36:28 servidor named-sdb[5218]: SDB sqlite3 DB zone database module loaded.
May 31 08:36:28 servidor named-sdb[5218]: SDB directory DB zone database module loaded.
May 31 08:36:28 servidor named-sdb[5218]: loading configuration from '/etc/named.conf'
May 31 08:36:28 servidor named-sdb[5218]: reading built-in trusted keys from file '/etc/named.iscdlv.key'
May 31 08:36:28 servidor named-sdb[5218]: using default UDP/IPv4 port range: [1024, 65535]
May 31 08:36:28 servidor named-sdb[5218]: using default UDP/IPv6 port range: [1024, 65535]
May 31 08:36:28 servidor named-sdb[5218]: listening on IPv4 interface lo, 127.0.0.1#53
May 31 08:36:28 servidor named-sdb[5218]: listening on IPv4 interface eth0, 172.16.0.192#53
May 31 08:36:28 servidor named-sdb[5218]: generating session key for dynamic DNS
May 31 08:36:28 servidor named-sdb[5218]: using built-in trusted-keys for view internal
May 31 08:36:28 servidor named-sdb[5218]: set up managed keys zone for view internal, file '3bed2cb3a3acf7b6a8ef408420cc682d5520e26976d354254f528c965612054f.mkeys'
May 31 08:36:28 servidor named-sdb[5218]: automatic empty zone: view internal: 127.IN-ADDR.ARPA
May 31 08:36:28 servidor named-sdb[5218]: automatic empty zone: view internal: 254.169.IN-ADDR.ARPA
May 31 08:36:28 servidor named-sdb[5218]: automatic empty zone: view internal: 2.0.192.IN-ADDR.ARPA
May 31 08:36:28 servidor named-sdb[5218]: automatic empty zone: view internal: 100.51.198.IN-ADDR.ARPA
May 31 08:36:28 servidor named-sdb[5218]: automatic empty zone: view internal: 113.0.203.IN-ADDR.ARPA
May 31 08:36:28 servidor named-sdb[5218]: automatic empty zone: view internal: 255.255.255.255.IN-ADDR.ARPA
May 31 08:36:28 servidor named-sdb[5218]: automatic empty zone: view internal: 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
May 31 08:36:28 servidor named-sdb[5218]: automatic empty zone: view internal: D.F.IP6.ARPA
May 31 08:36:28 servidor named-sdb[5218]: automatic empty zone: view internal: 8.E.F.IP6.ARPA
May 31 08:36:28 servidor named-sdb[5218]: automatic empty zone: view internal: 9.E.F.IP6.ARPA
May 31 08:36:28 servidor named-sdb[5218]: automatic empty zone: view internal: A.E.F.IP6.ARPA
May 31 08:36:28 servidor named-sdb[5218]: automatic empty zone: view internal: B.E.F.IP6.ARPA
May 31 08:36:28 servidor named-sdb[5218]: automatic empty zone: view internal: 8.B.D.0.1.0.0.2.IP6.ARPA
May 31 08:36:28 servidor named-sdb[5218]: using built-in trusted-keys for view external
May 31 08:36:28 servidor named-sdb[5218]: set up managed keys zone for view external, file '3c4623849a49a53911c4a3e48d8cead8a1858960bccdea7a1b978d73ec2f06d7.mkeys'
May 31 08:36:28 servidor named-sdb[5218]: automatic empty zone: view external: 0.IN-ADDR.ARPA
May 31 08:36:28 servidor named-sdb[5218]: automatic empty zone: view external: 127.IN-ADDR.ARPA
May 31 08:36:28 servidor named-sdb[5218]: automatic empty zone: view external: 254.169.IN-ADDR.ARPA
May 31 08:36:28 servidor named-sdb[5218]: automatic empty zone: view external: 2.0.192.IN-ADDR.ARPA
May 31 08:36:28 servidor named-sdb[5218]: automatic empty zone: view external: 100.51.198.IN-ADDR.ARPA
May 31 08:36:28 servidor named-sdb[5218]: automatic empty zone: view external: 113.0.203.IN-ADDR.ARPA
May 31 08:36:28 servidor named-sdb[5218]: automatic empty zone: view external: 255.255.255.255.IN-ADDR.ARPA
May 31 08:36:28 servidor named-sdb[5218]: automatic empty zone: view external: 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
May 31 08:36:28 servidor named-sdb[5218]: automatic empty zone: view external: 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
May 31 08:36:28 servidor named-sdb[5218]: automatic empty zone: view external: D.F.IP6.ARPA
May 31 08:36:28 servidor named-sdb[5218]: automatic empty zone: view external: 8.E.F.IP6.ARPA
May 31 08:36:28 servidor named-sdb[5218]: automatic empty zone: view external: 9.E.F.IP6.ARPA
May 31 08:36:28 servidor named-sdb[5218]: automatic empty zone: view external: A.E.F.IP6.ARPA
May 31 08:36:28 servidor named-sdb[5218]: automatic empty zone: view external: B.E.F.IP6.ARPA
May 31 08:36:28 servidor named-sdb[5218]: automatic empty zone: view external: 8.B.D.0.1.0.0.2.IP6.ARPA
May 31 08:36:28 servidor named-sdb[5218]: /etc/rndc.key:7: unknown option 'options'
May 31 08:36:28 servidor named-sdb[5218]: couldn't add command channel 127.0.0.1#953: failure
May 31 08:36:28 servidor named-sdb[5218]: /etc/rndc.key:7: unknown option 'options'
May 31 08:36:28 servidor named-sdb[5218]: couldn't add command channel ::1#953: failure
May 31 08:36:28 servidor named-sdb[5218]: the working directory is not writable
May 31 08:36:28 servidor named-sdb[5218]: isc_stdio_open 'data/named.run' failed: permission denied
May 31 08:36:28 servidor named-sdb[5218]: configuring logging: permission denied
May 31 08:36:28 servidor named-sdb[5218]: loading configuration: permission denied
May 31 08:36:28 servidor named-sdb[5218]: exiting (due to fatal error)