From owner-freebsd-questions@FreeBSD.ORG  Tue Nov  8 08:19:42 2005
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 7E2F916A41F
	for <freebsd-questions@freebsd.org>;
	Tue,  8 Nov 2005 08:19:42 +0000 (GMT)
	(envelope-from hemi@puresimplicity.net)
Received: from just.puresimplicity.net (just.puresimplicity.net
	[140.177.207.10])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 19DB043D45
	for <freebsd-questions@freebsd.org>;
	Tue,  8 Nov 2005 08:19:41 +0000 (GMT)
	(envelope-from hemi@puresimplicity.net)
Received: from just.puresimplicity.net (localhost.puresimplicity.net
	[127.0.0.1])
	by just.puresimplicity.net (8.13.3/8.13.1) with ESMTP id jA88Jfse027369
	(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO)
	for <freebsd-questions@freebsd.org>;
	Tue, 8 Nov 2005 02:19:41 -0600 (CST)
	(envelope-from hemi@just.puresimplicity.net)
Received: (from hemi@localhost)
	by just.puresimplicity.net (8.13.3/8.13.1/Submit) id jA88Jfa9027368
	for freebsd-questions@freebsd.org; Tue, 8 Nov 2005 02:19:41 -0600 (CST)
	(envelope-from hemi)
Date: Tue, 8 Nov 2005 02:19:41 -0600
From: Josh Tolbert <hemi@puresimplicity.net>
To: freebsd-questions@freebsd.org
Message-ID: <20051108081941.GA27333@just.puresimplicity.net>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.4.2.1i
Subject: Unusual permissions on /var/named/etc/namedb/master?
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 08 Nov 2005 08:19:42 -0000

Hello,

I'm running DHCP + dynamic DNS here on my home LAN and I've noticed a problem
that needs a manual fix every time the DNS machine gets rebooted. It doesn't
happen very often, but it does happen. :)

My firewall/gateway machine runs FreeBSD-5.4-RELEASE of some patchlevel. It
uses ISC DHCPD from ports to update my DNS server, another FreeBSD machine
(now running 6.0-RELEASE) with new entries when machines register with the
DHCP server. The problem arises because by default named runs -u bind, however
/var/named/etc/namedb/master is owned by root. I believe this is caused by
/etc/mtree/BIND.chroot.dist, since I'm running bind chrooted (the default
setup). When the DNS machine reboots, I have to manually chown
/var/named/etc/namedb/master (or /etc/namedb/master) to bind before updates
will continue, otherwise I see errors such as

named[297]: dumping master file: master/tmp-QQ2UU6pWaZ: open: permission denied

Is there any good workaround for this issue? I'd like to keep bind running as
the bind user as well as keep bind chrooted if possible. I know I could edit
the mtree file on my machine, but that seems somewhat kludgy to me.

Thanks for any help/advice you can give me,

Josh
-- 
Josh Tolbert
hemi@puresimplicity.net  ||  http://www.puresimplicity.net/~hemi/

If your sysadmin's not being fascist, you're paying him too much.
   --Sam Greenfield