Ed Wilts wrote: > Ditto for my 7.1 system. It does appear to be a bug - I do not believe that > any user should be able to halt named! > > .../Ed > > Ed Wilts > Mounds View, MN, USA > mailto:[EMAIL PROTECTED] > ----- Original Message ----- > From: "Michael Fratoni" <[EMAIL PROTECTED]> > > > > No answer to my first try, sorry for the repost. > > > > I'm not sure if I've misconfigured rndc somehow. I believe I have it set > > up as detailed in the documentation. rndc only listens on 127.0.0.1, > > however, it appears that non privileged local users can reload zones and > > halt named at will. Is this to be expected? > > > > [mfratoni@paradox updates-7.2] $ ssh tuxfan > > [mfratoni@tuxfan mfratoni]$ id > > uid=500(mfratoni) gid=500(mfratoni) groups=500(mfratoni) > > [mfratoni@tuxfan mfratoni]$ /usr/sbin/rndc reload > > rndc: reload command successful > > > > [mfratoni@tuxfan mfratoni]$ /usr/sbin/rndc halt > > rndc: halt command successful > > > > Thanks in advance, > > - -- > > - -Michael > >
It seems to me you have a permission problem. I have named installed from RedHat RPMs and as a regular user I cannot run rndc, because /etc/rndc.* are owned by root, group named, and permissions are 640. Fix this and you should be set. Cheers, -- Javier Gostling Ingeniero de Sistemas Virtualia S.A. [EMAIL PROTECTED] Fono: +56 (2) 202-6264 x 130 Fax: +56 (2) 342-8763 Mobil: +56 (9) 824-5236 Av. Kennedy 5757, of 1502 Las Condes Santiago Chile _______________________________________________ Redhat-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
