Unable to start bind: loading configuration from '/etc/named.conf' loading configuration: permission denied

Created:

2017-05-08 03:24:27 UTC

Modified:

2017-08-08 13:16:28 UTC

1

Was this article helpful?


Have more questions?

Submit a request

Unable to start bind: loading configuration from '/etc/named.conf' loading configuration: permission denied

Issue Symptoms

Unable to start bind9, the following error can be found in /var/log/syslog:

 named[8362]: loading configuration from '/etc/named.conf'
named[8362]: open: /etc/named.conf: permission denied
named[8362]: loading configuration: permission denied
named[8362]: exiting (due to fatal error)
kernel: [34074.383056] type=1400 audit(1494212104.678:254): apparmor="DENIED" operation="open" profile="/usr/sbin/named" name="/var/named/run-root/etc/named.conf" pid=8363 comm="named" requested_mask="r" denied_mask="r" fsuid=107 ouid=0

Conditions

DNS server configuration files cannot be read by AppArmor.

Resolution

Add the following into: /etc/apparmor.d/local/usr.sbin.named

/var/named/run-root/** rwm,

Reload AppArmor:

# service apparmor reload

Start bind9:

# service bind9 start

 

Have more questions? Submit a request
Please sign in to leave a comment.