issue with named
Lamont R. Peterson
lamont at gurulabs.com
Mon Dec 12 17:30:49 UTC 2005
On Monday 12 December 2005 05:55am, Craig White wrote:
> from /var/log/messages
>
> Dec 12 05:11:48 srv1 named[18083]: /var/named/clsurvey.com.hosts.jnl:
> create: permission denied
Have you flipped the named_write_master_zones boolean?
> Dec 12 05:11:48 srv1 kernel: audit(1134389508.478:0): avc: denied
> { add_name } for pid=18084 comm=named name=clsurvey.com.hosts.jnl
> scontext=root:system_r:named_t tcontext=system_u:object_r:named_zone_t
> tclass=dir
>
> Dec 12 05:11:48 srv1 named[18083]: client 192.168.1.1#33259: updating
> zone 'clsurvey.com/IN': error: journal open failed: unexpected error
>
> I have added to /etc/selinux/targeted/src/policy/domains/local.te
> allow named_t named_zone_t:dir write;
>
> and then make reload but the problem doesn't go away.
>
> Suggestions?
>
> Thanks
HTH.
--
Lamont R. Peterson <lamont at gurulabs.com>
Senior Instructor
Guru Labs, L.C. [ http://www.GuruLabs.com/ ]
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-selinux-list/attachments/20051212/d3287ee3/attachment.sig>
More information about the fedora-selinux-list
mailing list