From owner-freebsd-ports-bugs@FreeBSD.ORG Mon Aug 11 11:10:03 2008 Return-Path: Delivered-To: freebsd-ports-bugs@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 1C8F1106567F for ; Mon, 11 Aug 2008 11:10:03 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id ED27E8FC13 for ; Mon, 11 Aug 2008 11:10:02 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.2/8.14.2) with ESMTP id m7BBA2wk049786 for ; Mon, 11 Aug 2008 11:10:02 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.2/8.14.1/Submit) id m7BBA2hq049785; Mon, 11 Aug 2008 11:10:02 GMT (envelope-from gnats) Resent-Date: Mon, 11 Aug 2008 11:10:02 GMT Resent-Message-Id: <200808111110.m7BBA2hq049785@freefall.freebsd.org> Resent-From: FreeBSD-gnats-submit@FreeBSD.org (GNATS Filer) Resent-To: freebsd-ports-bugs@FreeBSD.org Resent-Reply-To: FreeBSD-gnats-submit@FreeBSD.org, "Ronald F.Guilmette" Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 752B11065672 for ; Mon, 11 Aug 2008 11:03:19 +0000 (UTC) (envelope-from rfg@tristatelogic.com) Received: from segfault-outgoing-helo.tristatelogic.com (112.171-60-66-fuji-dsl.static.surewest.net [66.60.171.112]) by mx1.freebsd.org (Postfix) with ESMTP id 468548FC1F for ; Mon, 11 Aug 2008 11:03:19 +0000 (UTC) (envelope-from rfg@tristatelogic.com) Received: by segfault.tristatelogic.com (Postfix, from userid 1237) id D87D4BDC53; Mon, 11 Aug 2008 04:03:18 -0700 (PDT) Message-Id: <20080811110318.D87D4BDC53@segfault.tristatelogic.com> Date: Mon, 11 Aug 2008 04:03:18 -0700 (PDT) From: "Ronald F.Guilmette" To: FreeBSD-gnats-submit@FreeBSD.org X-Send-Pr-Version: 3.113 Cc: Subject: ports/126452: Ownership of ${named_chrootdir}/etc/namedb set wrong X-BeenThere: freebsd-ports-bugs@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: "Ronald F.Guilmette" List-Id: Ports bug reports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 11 Aug 2008 11:10:03 -0000 >Number: 126452 >Category: ports >Synopsis: Ownership of ${named_chrootdir}/etc/namedb set wrong >Confidential: no >Severity: serious >Priority: low >Responsible: freebsd-ports-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: current-users >Arrival-Date: Mon Aug 11 11:10:02 UTC 2008 >Closed-Date: >Last-Modified: >Originator: Ronald F. Guilmette >Release: FreeBSD 7.0-RELEASE i386 >Organization: Infinite Monkeys & Co. LLC >Environment: System: FreeBSD 7.0-RELEASE Package: bind95-base-9.5.0.2 >Description: In a default/standard install of the bind95-base-9.5.0.2 port, the "variable" files (such as zone files) will get stashed into the /var/named/etc/namedb directory, and whenever named is started up, the /etc/rc.d/named script will create a symlink from /etc/namedb to /var/named/etc/namedb. Ordinarily, in the named.conf file the "directory" option will be set to "/etc/namedb", thus making the /var/named/etc/namedb directory the "home" directory for the named process. Unfortunately. in a standard/default/un-customized install of the bind95-base-9.5.0.2 port, the /var/named/etc/namedb directory gets its ownership set to "root" rather than to whatever "named_uid" is defined to within /etc/defaults/rc.conf (i.e. "bind"). This subsequently causes the named process to be unable to write into what it considers its own "home" directory... and it will complain about that by writing the following error into its default logging file/channel, e.g. each time a subsequent "rndc reload" is performed: the working directory is not writable >How-To-Repeat: su root portinstall bind95 {{edit the named.conf file and set the "default" logging channel to log to some specific file}} rndc reload {{look at the contents named's "default" log file to see the error}} >Fix: The install procedure for the bind95 port should create the directory /var/named/etc/namedb with ownership set to the same userID as is defined for the named_uid variable in the /etc/defaults/rc.conf file (i.e. "bind"). Changing the ownership of /var/named/etc/namedb to be the same UID as whatever UID named will actually (subsequently) be run under will allow named to write into its "working directory" and will make it stop complaining that it can't. >Release-Note: >Audit-Trail: >Unformatted: