Mike Atkinson's questions

I'm completely boggled by bind! Would massively appreciate any tips.

When I try to start bind I see:

root@WIG001-001 ~]# /etc/init.d/named start  
ls: cannot access /var/named/run-root/etc/pki/dnssec-keys: No such file or directory  
mount: mount point /var/named/run-root/etc/pki/dnssec-keys does not exist  
ls: cannot access /var/named/run-root/var/named: No such file or directory  
mount: mount point /var/named/run-root/var/named does not exist  
ls: cannot access /var/named/run-root/usr/lib64/bind: No such file or directory  
mount: mount point /var/named/run-root/usr/lib64/bind does not exist  
Starting named:                                            [FAILED]  

... So it looks like named is running from /var/named/run-root. If I check the logs it appears that the conf file is at /etc/named.conf (I'm copying in the other relevant messages in case to someone else it'll be obvious what's going on):

[root@WIG001-001 ~]# tail -n30 /var/log/messages  
Jul 27 21:16:44 WIG001-001 named[9200]: loading configuration from '/etc/named.conf'  
Jul 27 21:16:44 WIG001-001 named[9200]: using default UDP/IPv4 port range: [1024, 65535]  
Jul 27 21:16:44 WIG001-001 named[9200]: using default UDP/IPv6 port range: [1024, 65535]  
Jul 27 21:16:44 WIG001-001 named[9200]: listening on IPv4 interface lo, 127.0.0.1#53    
...blah....  
Jul 27 21:16:44 WIG001-001 named[9200]: command channel listening on 127.0.0.1#953  
Jul 27 21:16:44 WIG001-001 named[9200]: could not open entropy source /dev/random: permission denied  
Jul 27 21:16:44 WIG001-001 named[9200]: using pre-chroot entropy source /dev/random  
Jul 27 21:16:44 WIG001-001 named[9200]: the working directory is not writable  
Jul 27 21:16:44 WIG001-001 named[9200]: couldn't open pid file '/var/run/named/named.pid':   Permission denied  
Jul 27 21:16:44 WIG001-001 named[9200]: exiting (due to early fatal error)

..So assuming my config file is in /etc/named.conf from the above log,

[root@WIG001-001 ~]# cat /etc/named.conf  
...blah...  
options {  
        allow-recursion {  
                localnets;  
        };  
        directory "/var";  
        auth-nxdomain no;  
        pid-file "/var/run/named/named.pid";  
.....

From this file it looks like named should be running under /var - not /var/named/run-root as would have appeared from the command line when I tried to start named.

Can anyone give me any idea where to go from here? Any and all help would be massively appreciated!

I'm a chroot novice trying to make a simple chroot jail but am banging my head against the same problem time and time again... Any help would be massively appreciated

I've created a directory /usr/chroot that I want to use as a jail and created subdirectories under it and copied the dependencies of /bin/bash into it:

[root@WIG001-001 ~]# cd /usr/chroot/
[root@WIG001-001 chroot]# ls
[root@WIG001-001 chroot]# mkdir bin etc lib var home


[root@WIG001-001 chroot]# ldd /bin/bash        
linux-vdso.so.1 =>  (0x00007fff99dba000)        
libtinfo.so.5 => /lib64/libtinfo.so.5 (0x00000037a2000000)        
libdl.so.2 => /lib64/libdl.so.2 (0x000000379fc00000)        
libc.so.6 => /lib64/libc.so.6 (0x000000379f800000)        
/lib64/ld-linux-x86-64.so.2 (0x000000379f400000)

[root@WIG001-001 chroot]# cp /lib64/libtinfo.so.5 /usr/chroot/lib/  
[root@WIG001-001 chroot]# cp /lib64/libdl.so.2 /udr/csr/chroot/lib/  
[root@WIG001-001 chroot]# cp /lib64/libc.so.6 /usr/chroot/lib/  
[root@WIG001-001 chroot]# cp /lib64/ld-linux-x86-64.so.2 /usr/chroot/lib/  
[root@WIG001-001 chroot]# cp /bin/bash bin  
[root@WIG001-001 chroot]# pwd  
/usr/chroot  
[root@WIG001-001 chroot]# /usr/sbin/chroot .  
/usr/sbin/chroot: cannot run command `/bin/bash': No such file or directory  


it looks like the /bin/bash created under /usr/chroot is fine as the below works:  
[root@WIG001-001 chroot]# su - nobody -s /usr/chroot/bin/bash  
-bash-4.0$ 

Can anyone give me any idea where to go from here?