[CentOS-de] named: the working directory is not writable

Wolfgang centos at arcor.de
Sa Okt 29 05:24:39 EDT 2011 

Hallo,


eigentlich läuft alles ganz gut, (die DNSauflöung funktioniert
in beide Richtungen) aber vielleicht kann mir doch einer verraten,
um welches directory es sich hier handelt:

named: the working directory is not writable

Google erzhält mir immer das gleiche... chown named ....das ich bereits
umgesetzt habe.


Gruss
Wolfgang

[root at hex ~]# rpm -qa bind*
bind97-libs-9.7.0-6.P2.el5_6.3
bind97-utils-9.7.0-6.P2.el5_6.3
bind97-9.7.0-6.P2.el5_6.3


[root at hex ~]# grep named /var/log/messages
Oct 29 10:52:01 hex named[7291]: adjusted limit on open files from 16384
to 1048576
Oct 29 10:52:01 hex named[7291]: found 6 CPUs, using 6 worker threads
Oct 29 10:52:01 hex named[7291]: using up to 4096 sockets
Oct 29 10:52:01 hex named[7291]: loading configuration from
'/etc/named.conf'
Oct 29 10:52:01 hex named[7291]: reading built-in trusted keys from file
'/etc/named.iscdlv.key'
Oct 29 10:52:01 hex named[7291]: using default UDP/IPv4 port range:
[1024, 65535]
Oct 29 10:52:01 hex named[7291]: using default UDP/IPv6 port range:
[1024, 65535]
Oct 29 10:52:01 hex named[7291]: no IPv6 interfaces found
Oct 29 10:52:01 hex named[7291]: listening on IPv4 interface lo,
127.0.0.1#53
Oct 29 10:52:01 hex named[7291]: listening on IPv4 interface eth0,
192.168.1.6#53
Oct 29 10:52:01 hex named[7291]: generating session key for dynamic DNS
Oct 29 10:52:01 hex named[7291]: zone 'schule.local' allows updates by
IP address, which is insecure
Oct 29 10:52:01 hex named[7291]: zone '1.168.192.in-addr.arpa' allows
updates by IP address, which is insecure
Oct 29 10:52:01 hex named[7291]: using built-in trusted-keys for view
_default
Oct 29 10:52:01 hex named[7291]: automatic empty zone: 127.IN-ADDR.ARPA
Oct 29 10:52:01 hex named[7291]: automatic empty zone:
254.169.IN-ADDR.ARPA
Oct 29 10:52:01 hex named[7291]: automatic empty zone:
2.0.192.IN-ADDR.ARPA
Oct 29 10:52:01 hex named[7291]: automatic empty zone:
255.255.255.255.IN-ADDR.ARPA
Oct 29 10:52:01 hex named[7291]: automatic empty zone:
0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
Oct 29 10:52:01 hex named[7291]: automatic empty zone:
1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
Oct 29 10:52:01 hex named[7291]: automatic empty zone: D.F.IP6.ARPA
Oct 29 10:52:01 hex named[7291]: automatic empty zone: 8.E.F.IP6.ARPA
Oct 29 10:52:01 hex named[7291]: automatic empty zone: 9.E.F.IP6.ARPA
Oct 29 10:52:01 hex named[7291]: automatic empty zone: A.E.F.IP6.ARPA
Oct 29 10:52:01 hex named[7291]: automatic empty zone: B.E.F.IP6.ARPA
Oct 29 10:52:01 hex named[7291]: using built-in trusted-keys for view
_meta
Oct 29 10:52:01 hex named[7291]: set up managed-keys.bind meta-zone
Oct 29 10:52:01 hex named[7291]: command channel listening on
127.0.0.1#953


Oct 29 10:52:01 hex named[7291]: the working directory is not writable
<< Um diese Zeile dreht sich meine Frage.


Oct 29 10:52:01 hex named[7291]: zone 0.in-addr.arpa/IN: loaded serial 0
Oct 29 10:52:01 hex named[7291]: zone 1.0.0.127.in-addr.arpa/IN: loaded
serial 0
Oct 29 10:52:01 hex named[7291]: zone 1.168.192.in-addr.arpa/IN: loaded
serial 0
Oct 29 10:52:01 hex named[7291]: zone schule.local/IN: loaded serial 0
Oct 29 10:52:01 hex named[7291]: zone localhost/IN: loaded serial 0
Oct 29 10:52:01 hex named[7291]: zone managed-keys.bind/IN/_meta: loaded
serial 4
Oct 29 10:52:01 hex named[7291]: running
Oct 29 10:52:01 hex named[7291]: zone 1.168.192.in-addr.arpa/IN: sending
notifies (serial 0)
Oct 29 10:52:01 hex named[7291]: zone schule.local/IN: sending notifies
(serial 0)
Oct 29 10:52:01 hex named[7291]: zone windows.com/IN: sending notifies
(serial 0)



[root at hex ~]# ls -l /var
...
drwxr-x---  5 named  named  4096 29. Okt 10:04 named
...


[root at hex ~]# ls -al /var/named
insgesamt 96
drwxr-x---  5 named named 4096 29. Okt 10:04 .
drwxr-xr-x 28 root  root  4096 29. Okt 09:00 ..
-rw-r-----  1 named named  307 18. Sep 11:18 1.168.192.in-addr.arpa
drwxrwx---  2 named named 4096 29. Okt 09:35 data
drwxrwx---  2 named named 4096 29. Okt 10:36 dynamic
-rw-r-----  1 named named 1892 18. Feb 2008  named.ca
-rw-r-----  1 named named  146 29. Okt 10:02 named.empty
-rw-r-----  1 named named  147 29. Okt 10:03 named.localhost
-rw-r-----  1 named named  162 29. Okt 10:03 named.loopback
-rw-r-----  1 named named  484  8. Okt 11:34 schule.local
drwxrwx---  2 named named 4096  8. Jul 00:24 slaves


OS: CentOS 5.7
Kernel: 2.6.18-274.3.1.el5 #1 SMP Tue Sep 6 20:13:52 EDT 2011 x86_64
x86_64 x86_64 GNU/Linux


[root at hex ~]# cat /etc/named.conf 
options {
        listen-on port 53 { 127.0.0.1; 192.168.1.6; };
        directory       "/var/named";
        dump-file       "/var/named/data/cache_dump.db";
        statistics-file "/var/named/data/named_stats.txt";
        memstatistics-file "/var/named/data/named_mem_stats.txt";
        allow-query     { localhost; 192.168.1.0/24; };
        recursion yes;

        dnssec-enable yes;
        dnssec-validation yes;
        dnssec-lookaside auto;

        /* Path to ISC DLV key */
        bindkeys-file "/etc/named.iscdlv.key";
};
logging {
        channel default_debug {
                file "data/named.run";
                severity dynamic;
        };
};

zone "." IN {
        type hint;
        file "named.ca";
};
include "/etc/rndc.key";
include "/etc/named.rfc1912.zones";