Bug 107365 - /var/named permissions do not allow slave DNS servers to create files
Summary: /var/named permissions do not allow slave DNS servers to create files
Keywords:
Status: CLOSED NOTABUG
Alias: None
Product: Red Hat Linux Beta
Classification: Retired
Component: bind
Version: RC1
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Daniel Walsh
QA Contact: Ben Levenson
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2003-10-17 14:51 UTC by Kirby
Modified: 2007-04-18 16:58 UTC (History)
0 users

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2003-10-17 15:02:12 UTC
Embargoed:


Attachments (Terms of Use)

Description Kirby 2003-10-17 14:51:05 UTC
I am using Taroon-re1007.RC1.0-i386-es. The permissions associated with
/var/named are 750 with root.named ownership. When you set up a slave DNS
server, the zone file creation fails.

Comment 1 Daniel Walsh 2003-10-17 15:02:12 UTC
Slave zones should be setup in a subdirectory to /var/named, perhaps call slave
and 
chown named.named /var/named/slave

Having /var/named owned by named is a potential security hole.  Basically if
someone breaks into named server then can manipulate your name resolution files.
 With the current ownership they won't be able to.

Dan


Note You need to log in before you can comment on or make changes to this bug.