From nobody@FreeBSD.org  Thu Jan 27 23:02:00 2005
Return-Path: <nobody@FreeBSD.org>
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 5809016A4CE
	for <freebsd-gnats-submit@FreeBSD.org>; Thu, 27 Jan 2005 23:02:00 +0000 (GMT)
Received: from www.freebsd.org (www.freebsd.org [216.136.204.117])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 3698743D55
	for <freebsd-gnats-submit@FreeBSD.org>; Thu, 27 Jan 2005 23:02:00 +0000 (GMT)
	(envelope-from nobody@FreeBSD.org)
Received: from www.freebsd.org (localhost [127.0.0.1])
	by www.freebsd.org (8.13.1/8.13.1) with ESMTP id j0RN20GW032461
	for <freebsd-gnats-submit@FreeBSD.org>; Thu, 27 Jan 2005 23:02:00 GMT
	(envelope-from nobody@www.freebsd.org)
Received: (from nobody@localhost)
	by www.freebsd.org (8.13.1/8.13.1/Submit) id j0RN1x8J032460;
	Thu, 27 Jan 2005 23:01:59 GMT
	(envelope-from nobody)
Message-Id: <200501272301.j0RN1x8J032460@www.freebsd.org>
Date: Thu, 27 Jan 2005 23:01:59 GMT
From: Paul B <pabelanger@codeslingers.ca>
To: freebsd-gnats-submit@FreeBSD.org
Subject: BIND9 and dynamic updates
X-Send-Pr-Version: www-2.3

>Number:         76775
>Category:       i386
>Synopsis:       BIND9 and dynamic updates
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    dougb
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Thu Jan 27 23:10:31 GMT 2005
>Closed-Date:    Wed Feb 23 13:46:49 GMT 2005
>Last-Modified:  Wed Feb 23 13:46:49 GMT 2005
>Originator:     Paul B
>Release:        RELENG_5_3
>Organization:
CodeSlingers
>Environment:
FreeBSD router1 5.3-RELEASE-p5 FreeBSD 5.3-RELEASE-p5 #1: Mon Jan 24 17:34:10 EST 2005     root@router1:/usr/obj/usr/src/sys/MYKERNEL  i386
>Description:
      It seems that named does not have proper permissions to write to /etc/named/master.

Please refer to http://lists.freebsd.org/pipermail/freebsd-current/2004-November/042203.html for the orginal problem and solutions.

Nov  2 22:40:31 vimes named[98525]: client 213.187.177.2#54260: updating 
zone 'aminor.no/IN': adding an RR at 'jolie.aminor.no' A
Nov  2 22:40:31 vimes named[98525]: journal file 
master/aminor.no.zone.jnl does not exist, creating it
Nov  2 22:40:31 vimes named[98525]: master/aminor.no.zone.jnl: create: 
permission denied
Nov  2 22:40:31 vimes kernel: Nov  2 22:40:31 vimes named[98525]: 
master/aminor.no.zone.jnl: create: permission denied
Nov  2 22:40:31 vimes named[98525]: client 213.187.177.2#54260: updating 
zone 'aminor.no/IN': error: journal open failed: unexpected error
>How-To-Repeat:
      named.conf

acl example-lan {
    192.168.0.0/24;
    127.0.0.1;
};


zone "example.com" {
        type master;
        file "master/example.com";
        allow-update {
                example-lan;
        };
};

>Fix:
      Index: mtree/BIND.chroot.dist
===================================================================
RCS file: /src/FreeBSD/ncvs/src/etc/mtree/BIND.chroot.dist,v
retrieving revision 1.5
diff -u -r1.5 BIND.chroot.dist
--- mtree/BIND.chroot.dist	29 Sep 2004 03:43:10 -0000	1.5
+++ mtree/BIND.chroot.dist	3 Nov 2004 18:45:06 -0000
@@ -9,6 +9,8 @@
     ..
     etc
         namedb
+            dynamic uname=bind
+            ..
             master
             ..
             slave   uname=bind
>Release-Note:
>Audit-Trail:
State-Changed-From-To: open->closed 
State-Changed-By: dougb 
State-Changed-When: Wed Feb 23 13:44:06 GMT 2005 
State-Changed-Why:  

This was done by gshapiro in rev 1.6 back in November 2004, 
and as far as I can see, should be what's in 5-Stable now. 

Please try upgrading and see if that helps.  


Responsible-Changed-From-To: freebsd-i386->dougb 
Responsible-Changed-By: dougb 
Responsible-Changed-When: Wed Feb 23 13:44:06 GMT 2005 
Responsible-Changed-Why:  

I generally handle BIND bits. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=76775 
>Unformatted:
