Package: bind9 Version: 1:9.2.4-1 Followup-For: Bug #386791 Hello
I can confirm this, it happend on all servers after todays DSA updates: named[2660]: stopping command channel on 127.0.0.1#953 named[2660]: stopping command channel on ::1#953 named[2660]: exiting named[10886]: starting BIND 9.2.4 named[10886]: none:0: open: /etc/bind/rndc.key: permission denied named[10886]: couldn't add command channel 127.0.0.1#953: permission denied named[10886]: none:0: open: /etc/bind/rndc.key: permission denied named[10886]: couldn't add command channel ::1#953: permission denied I don't understand why there is a permission denied as bind itself runs as user bind and should be able to read the file. Maybe it's a kind of security check that prevents bind from starting when the file is writable for the daemon. The daemon itself seems to work correctly, answering on all interface addresses. Probably only the rndc command does not work. Regarding the proposed solution I get a # rndc reload 127.in-addr.arpa rndc: connect failed: connection refused even after chowning the file to root and restarting the daemon :( bye, -christian- -- System Information: Debian Release: 3.1 Architecture: i386 (i686) Kernel: Linux 2.6.8-3-686-smp Locale: LANG=de_DE, LC_CTYPE=de_DE (charmap=ISO-8859-15) (ignored: LC_ALL set to [EMAIL PROTECTED]) Versions of packages bind9 depends on: ii adduser 3.63 Add and remove users and groups ii libc6 2.3.2.ds1-22sarge4 GNU C Library: Shared libraries an ii libdns16 1:9.2.4-1 DNS Shared Library used by BIND ii libisc7 1:9.2.4-1 ISC Shared Library used by BIND ii libisccc0 1:9.2.4-1 Command Channel Library used by BI ii libisccfg0 1:9.2.4-1 Config File Handling Library used ii liblwres1 1:9.2.4-1 Lightweight Resolver Library used ii libssl0.9.7 0.9.7e-3sarge1 SSL shared libraries ii netbase 4.21 Basic TCP/IP networking system -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]