Ping a Specific Port

Question

user192702

Asked: 2014-01-27 07:45:01 +0800 CST2014-01-27 07:45:01 +0800 CST 2014-01-27 07:45:01 +0800 CST

BIND session key

772

When I restart or start my BIND DNS server, I'm getting the following in the /var/log/messages log file.

Jan 26 07:50:30 dev named[306]: could not create /jail/bind-9.9.4-P2/var/run/named/session.key
Jan 26 07:50:30 dev named[306]: failed to generate session key for dynamic DNS: permission denied

Any idea why this is the case? I searched around and it appears to be related to the "key-directory" setting in the named.conf file. However even if I set this to a writeable directory I'm still seeing this error. Any ideas?

1 Answers

Voted

zany · Answer 1 · 2015-05-19T09:42:26+08:00

zany

2015-05-19T09:42:26+08:002015-05-19T09:42:26+08:00

You got the right idea, session.key might not be writeable or the path might not exist.

The BIND option key-directory you mention specifies the directory where the public and private DNSSEC key files should be found when performing dynamic update of secure zones.

Try to set the BIND option session-keyfile to the pathname of the file into which to write a TSIG session key. If not specified, the default is /var/run/named/session.key (and relative to your chroot jail).

E.g. in named.conf's options-section

session-keyfile "/var/bind/session.key";

1

BIND session key

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?