Fedora bind-chroot permissions wrong
I am running Bind chrooted on my FC3 machine.
this causes the files to be relative to /var/named/chroot.
In this folder I have an etc/named.conf telling the files are stored in /var/named/. (And this is, again, relative to above directory).
All files are there, that's good. the daemon works well and can find all files...
Additionally, I am using dynamic updates, so DHCP can register new hosts (and I use dns updates using the dynamic update mechanism, not by editing the zone files directly. This results the named daemon to write to journal. All still fine, as long as the files are existent.
As soon as named wants to create a new file though, it bounces back because the '/var/named' folder is owned by root:named and has mode 750. (this is default from the RPM)
Every fifteen minutes I see these log entries:
Aug 4 11:43:53 server named: dumping master file: tmp-XXXXAVqYmz: open: permission denied
Aug 4 11:43:53 server named: zone homenet.local/IN: dump failed: permission denied
Aug 4 11:43:53 server named: dumping master file: tmp-XXXXOE76Mf: open: permission denied
Aug 4 11:43:53 server named: zone 0.168.192.in-addr.arpa/IN: dump failed: permission denied
As soon as I either chown the directory to named:named, or make it mode 770, the daemon can do its work again... But why would I need to do this action every time my RPMs get updated?
What I mean is: the bind-chroot package is simply not correct in my opinion, unless I have some sort of configuration error...
Can anybody clarify this or help me resolve this issue?