On 5/22/06, Per Jessen
Sunny wrote:
Now, when I start the DNS slave, in the log files I see:
May 22 12:46:29 fwqa named[20985]: zone mydomain.com/IN: Transfer started. May 22 12:46:29 fwqa named[20985]: transfer of 'mydomain.com/IN' from 10.88.2.11#53: connected using 10.88.3.11#44250 May 22 12:46:29 fwqa named[20985]: dumping master file: rename: slave/mydomain.com: permission denied May 22 12:46:29 fwqa named[20985]: transfer of 'mydomain.com/IN' from 10.88.2.11#53: failed while receiving responses: permission denied May 22 12:46:29 fwqa named[20985]: transfer of 'mydomain.com/IN' from 10.88.2.11#53: end of transfer May 22 12:46:29 fwqa kernel: audit(1148319989.417:73): REJECTING w access to /slave/mydomain.com (named(20986) profile /usr/sbin/named active /usr/sbin/named)
This is auditd creating a problem - to start with you can turn the REJECTs into warnings by issuing "complain /usr/sbin/named". Alternatively, you can update the apparmor profile by issuing "aa-genprof /usr/sbin/named".
/Per Jessen, Zürich
None of these exist on my system. locate aa-genprof and locate complain display nothing. This is 10.1 text install, no GUI, etc. -- -- Svetoslav Milenov (Sunny) Windows is a 32-bit extension to a 16-bit graphical shell for an 8-bit operating system originally coded for a 4-bit microprocessor by a 2-bit company that can't stand 1 bit of competition.