aurfalien wrote the following on 5/21/2012 12:05 PM: > On May 21, 2012, at 11:57 AM, Shiv. NK wrote: > >> Dear all, >> >> bind cannot load zone files, i see the following in the log for all domains. >> >> i have tried with 777 to all zone files but does not make difference. main >> directories are also owned by named:named >> >> >> May 21 15:45:23 nsfo1 named-sdb[2482]: zone dot.com.gh/IN: loading from >> master file master/db.gh.com.dot failed: permission denied >> >> help would be very much appreciated >> >> Thanks > Hi, > > Ensure proper UGO, needs to be named and 640. > If selinux is in "Enforcing" mode (getenforce command). You also need to check the context of the files (ls -Z). I believe the proper context is "system_u:object_r:named_zone_t". The zone files I have are owned by root.named and 640. --Blake