On 22.10.22 07:43, Maurizio Caloro wrote:
I give „read“ to folder /etc/bind/* but this didnt help
Oct 22 07:19:58 nmail kernel: [896168.251621] audit: type=1400
audit(1666415998.440:292): apparmor="DENIED" operation="mknod"
profile="/usr/sbin/named" name="/etc/bind/db.dash.ch.signed.jnl" pid=672
comm="isc-worker0001" requested_mask="c" denied_mask="c" fsuid=110 ouid=110
This is a write (create) operation.
Move your database files to /var/lib/bind and no change to apparmor is
needed.
Best regards
Ulf
