its not hard to do, but you gotta make sure that permissiosn are right on the files all the time..which can be a pain sometimes, if even 1 zone file can't be read bind will puke.
on my servers i made a little script to do it for me..: echo -n "Updating permissions for the BIND server ..." chown named.named /var/named chown named.named /usr/local/named chown -R named.named /var/named/usr chmod -R o-rwx /var/named/named* /var/named/primary/* /var/named/reverse/* chmod -R u+rw /var/named/named* /var/named/primary/* /var/named/reverse/* chmod -R g+rw /var/named/named* /var/named/primary/* /var/named/reverse/* chown -R named.named /var/named/named* /var/named/primary* /var/named/reverse/* echo "done" i also have another script to restart bind :; #!/bin/sh BINDPROC=`cat /var/named/var/run/named.pid` cd /var/named ./permissions echo "BIND restarting by command of $USER on `date`" echo "BIND on process $BINDPROC is being restarted by command of $LOGNAME at `date` This message is informational, no action is needed." | mail [EMAIL PROTECTED] echo "BIND on process $BINDPROC is being restarted by command of $LOGNAME at `date`" | mail [EMAIL PROTECTED] kill -HUP $BINDPROC these scripts are mainly for the other admin(s) who are not too unix savvy just yet but they are getting there .. nate On Thu, 30 Dec 1999, Pollywog wrote: pollyw > pollyw >On 30-Dec-1999 Onno wrote: pollyw >> At 04:16 PM 12/28/99 -0000, Pollywog wrote: pollyw >>> pollyw >>>On 28-Dec-1999 root wrote: pollyw >>> pollyw >>>Was this someone trying to find out which BIND I am running? pollyw >>>> pollyw >>>> Unusual System Events pollyw >>>> =-=-=-=-=-=-=-=-=-=-= pollyw >>>> Dec 28 06:39:09 lilypad named[342]: unapproved query from pollyw >>>> [206.79.22.9].1978 pollyw >>>> for "version.bind" pollyw >>>> Dec 28 06:39:09 lilypad named[342]: unapproved query from pollyw >>>> [206.79.22.9].1978 pollyw >>>> for "version.bind" pollyw >> pollyw >> I don't know the query but I't looks like bind is handeling it quite well pollyw >> ;-) pollyw >> pollyw >> Anyway you have bind under another UID/GID than root, right? pollyw > pollyw >I installed the Debian package for BIND, and I just checked and it does appear pollyw >to be running as root :( pollyw > pollyw >I will have to read the docs to determine if I can change that without pollyw >compiling it myself. pollyw > pollyw >-- pollyw >Andrew pollyw > pollyw > pollyw >-- pollyw >Unsubscribe? mail -s unsubscribe [EMAIL PROTECTED] < /dev/null pollyw > ----------------------------------------[mailto:[EMAIL PROTECTED] ]-- Vice President Network Operations http://www.firetrail.com/ Firetrail Internet Services Limited http://www.aphroland.org/ Everett, WA 425-348-7336 http://www.linuxpowered.net/ Powered By: http://comedy.aphroland.org/ Debian 2.1 Linux 2.0.36 SMP http://yahoo.aphroland.org/ -----------------------------------------[mailto:[EMAIL PROTECTED] ]-- 9:24am up 132 days, 21:18, 3 users, load average: 2.27, 1.75, 1.61
