Trenta sis
2019-Sep-10 16:16 UTC
[Samba] bind-dns folder permissions with bind-dlz configuration 4.10
Hi, While upgrading samba 4.4 to samba 4.10 I have detected taht with newer versions if you use bind-dlx config it seem that is not working by a permissions problems on new folder bind-dns on samba folder, If you change to 777 to this folder and named.conf then works, but is not secure... I have checked samba wiki and no information about this Any suggestion what could be the right configuration? Thanks
Rowland penny
2019-Sep-10 16:34 UTC
[Samba] bind-dns folder permissions with bind-dlz configuration 4.10
On 10/09/2019 17:16, Trenta sis via samba wrote:> Hi, > > While upgrading samba 4.4 to samba 4.10 I have detected taht with > newer versions if you use bind-dlx config it seem that is not working > by a permissions problems on new folder bind-dns on samba folder, > If you change to 777 to this folder and named.conf then works, but is > not secure... > I have checked samba wiki and no information about this > > Any suggestion what could be the right configuration? > > Thanks >Close, root:bind 0770 Rowland
L.P.H. van Belle
2019-Sep-11 06:24 UTC
[Samba] bind-dns folder permissions with bind-dlz configuration 4.10
-----Oorspronkelijk bericht----- .... I have checked samba wiki and no information about this Any suggestion what could be the right configuration? ... Yes, First improve you google skills. google: "samba wiki bind9 dlz chmod" Second, First result link is one you where looking for. ;-) Greetz, Louis
Rowland penny
2019-Sep-11 07:07 UTC
[Samba] bind-dns folder permissions with bind-dlz configuration 4.10
On 11/09/2019 07:24, L.P.H. van Belle via samba wrote:> > -----Oorspronkelijk bericht----- > .... > I have checked samba wiki and no information about this > > Any suggestion what could be the right configuration? > ... > Yes, > > First improve you google skills. > google: "samba wiki bind9 dlz chmod" > > Second, First result link is one you where looking for. ;-) > > Greetz, > > Louis > > >ER, it wasn't there yesterday morning ;-) Rowland
L.P.H. van Belle
2019-Sep-11 08:37 UTC
[Samba] bind-dns folder permissions with bind-dlz configuration 4.10
Sure it was, ;-), maybe not that one specific site link but it was on wiki and my google searches do show that.. Im always wondering what people used for there searches. When they can find it. I also noticed on the link: https://wiki.samba.org/index.php/BIND9_DLZ_DNS_Back_End Verify that your /etc/krb5.conf Kerberos client configuration file is readable by your BIND user. For example: # ls -l /etc/krb5.conf -rw-r--r--. 1 root named 99 2. Sep 2014 /etc/krb5.conf Im wondering.. /etc/krb5.conf is setup to 644, why is named added if we have 644? Second, if we dont have 644 and we use 640, Then use setfacl and not chmod ... add the needed users to the a group and allow it to read it. My "in general rule" here is, if its only used by one program, you can use chmod and apply posix rights. If a file/folder needs to be read by multiple users, of use groups or add extra acls. This is a part we should correct a bit. ... A few simple tips in howto improve you google skills. Lets take this example. > google: "samba wiki bind9 dlz chmod" Prio of words, from left to right. Important -> less important. Howto improve the above string: Google: +samba wiki +bind9 dlz chmod + means, this MUST be on the website. - means, this MUST NOT be on the website. More direct search. +samba wiki +bind9 dlz chmod +site:wiki.samba.org -site:www.samba.org Means, only search on the site wiki.samba.org for the words, and remove any www.samba.org results. And here you go only 2 link with the correct info. Now back to the buster 4.11rc4 build.. ;-) Greetz, Louis -----Oorspronkelijk bericht----- Van: samba [mailto:samba-bounces at lists.samba.org] Namens Rowland penny via samba Verzonden: woensdag 11 september 2019 9:07 Aan: samba at lists.samba.org Onderwerp: Re: [Samba] bind-dns folder permissions with bind-dlz configuration 4.10 On 11/09/2019 07:24, L.P.H. van Belle via samba wrote:> > -----Oorspronkelijk bericht----- > .... > I have checked samba wiki and no information about this > > Any suggestion what could be the right configuration? > ... > Yes, > > First improve you google skills. > google: "samba wiki bind9 dlz chmod" > > Second, First result link is one you where looking for. ;-) > > Greetz, > > Louis > > >ER, it wasn't there yesterday morning ;-) Rowland -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Trenta sis
2019-Sep-12 06:37 UTC
[Samba] bind-dns folder permissions with bind-dlz configuration 4.10
Thanks for your help, we only reported this information to help other users. Additional info for users using debian bind, user chown must be bind and not named thanks for all!! Missatge de Trenta sis <trenta.sis at gmail.com> del dia dt., 10 de set. 2019 a les 18:16:> > Hi, > > While upgrading samba 4.4 to samba 4.10 I have detected taht with > newer versions if you use bind-dlx config it seem that is not working > by a permissions problems on new folder bind-dns on samba folder, > If you change to 777 to this folder and named.conf then works, but is > not secure... > I have checked samba wiki and no information about this > > Any suggestion what could be the right configuration? > > Thanks