July 3rd, 2011 by budiwijaya

How to allow Named/bind9 to write to other directory that blocked by Apparmor

My slave dns server returned error while I tried to add another domain, below example of the error.

kernel: [1239217.411031] type=1503 audit(1309700303.423:12381):
operation="mknod" pid=1692 parent=1 profile="/usr/sbin/named"
requested_mask="c::" denied_mask="c::" fsuid=109 ouid=109
name="/etc/bind/db/in/tmp-ImzPls04Rk"

That’s because named aren’t allowed to write to directory /etc/bind/db/in. To solve this issue, open apparmor profile of named (/etc/apparmor.d/usr.sbin.named), add this line right after ‘/etc/bind/** r,‘ :

/etc/bind/db/** rw,

Restart the apparmor and then restart named.

No Comments Permalink Tags: apparmor, bind9, dns, dns server, named, tips

Tentang Promosi Simpati Freedom

October 21st, 2010

Halo semua, kali ini saya cuma mau share pengalaman dalam urusan telpon menelpon. Dari semua operator yang pernah saya pakai. Kali ini cuma Simpati yang sangat cocok untuk saya. Saya sangat sering berhubungan dengan client, baik dihubungi maupun menghubungi. Karena pekerjaan saya yang sering membuat saya berpindah-pindah lokasi, maka jelas saya sangat membutuhkan sebuah telepon [...]

Installing Mailing List Manager a.k.a Mailman on Ubuntu 6.06

August 24th, 2010

Recently I Installed a mailing list manager on my mailserver. I use GNU’s mailman. It’s straightforward and simple and they have a web-based administration. I’m following this tutorial from wiki.ubuntu.com. But unfortunately, this tutorial has some error in configuration. After a long search finally I found that, the line at /etc/mailman/mm_cfg.py should be MTA = [...]

Installing OpenBSD 4.7 in Ubuntu KVM-84

August 13th, 2010

Hello all, This time I need to play with OpenBSD, because I want to learn some software that doesn’t exist in Linux. It’s combination of spamd, relaydb and pf. The purpose of this, I want to get rid of spam as many as I could. Of course, with minimal efforts (cpu cycles, bandwidth, etc). Installing [...]

How to setup login prompt and grub via serial console

July 19th, 2010

In my Office, I use a relatively small computer devices. I setup those boxes as router, located in network panel room together with switch and cable closet. There’s no monitor or keyboard there. So when there’s any error, I need an quick solutions to see what happened while boot. I tried this with Ubuntu 10.04. [...]

How to find AS Number from an IP

July 18th, 2010

Yesterday there was a slight problem on the office network. IP blocks for upstream B was passed from upstream A. Once the problem is finished, it’s fun to see record ASN from the internet provider company here: http://bgp.he.net/AS7713 (7713 is the U.S. from Telkom) I’m curios who’s Google peering with? Finally a little Googling found [...]

budiwijaya.net

Use legal software, use opensource!

How to allow Named/bind9 to write to other directory that blocked by Apparmor

Recent Posts

Tentang Promosi Simpati Freedom

Installing Mailing List Manager a.k.a Mailman on Ubuntu 6.06

Installing OpenBSD 4.7 in Ubuntu KVM-84

How to setup login prompt and grub via serial console

How to find AS Number from an IP

Welcoming our newest family member

cd -

Mplayer Encoder

How to take a sneak peek postfix mail queue

Search

Pages

Archives

Visitors

Categories

Sponsor Kami