dhcpd wont start due to rndc.key permissions
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
isc-dhcp (Ubuntu) |
Fix Released
|
Wishlist
|
Unassigned |
Bug Description
Binary package hint: dhcp3-server
System information:
#lsb_release -rd
Description: Ubuntu 8.04.1
Release: 8.04
#apt-cache policy dhcp3-server
dhcp3-server:
Installed: 3.0.6.dfsg-1ubuntu9
Candidate: 3.0.6.dfsg-1ubuntu9
Version table:
*** 3.0.6.dfsg-1ubuntu9 0
500 http://
100 /var/lib/
#apt-cache policy bind9
bind9:
Installed: 1:9.4.2.
Candidate: 1:9.4.2.
Version table:
*** 1:9.4.2.
500 http://
500 http://
100 /var/lib/
1:9.4.2-10 0
500 http://
Problem:
dhcpd wont start - "/etc/bind/
Workaround found but is a potential security issue ("/etc/
Brief:
Trying to get dhcp3-server and bind9 to work together nicely.
The "/etc/bind/
Steps:
- Install & configure bind9 (configuration tested and working)
- Install & configure dhcp3-server
- sudo /etc/init.
Expected result:
dhcpd starts
Actual result:
#/etc/init.
dhcpd self-test failed. Please fix the config file.
The error was:
Can't open /etc/bind/rndc.key: Permission denied
#ls -l `which dhcpd3`
-rwxr-xr-x 1 root root 516164 2008-04-02 15:38 /usr/sbin/dhcpd3
#ls -l /etc/bind/rndc.key
-rw-r----- 1 bind bind 77 2009-03-12 14:30 /etc/bind/rndc.key
#id -a dhcpd
uid=111(dhcpd) gid=122(dhcpd) groups=
Workaround:
- Change permissions of /etc/bind/rndc.key to world readable (from 640 -> 644)
note: adding 'dhcpd' user to 'bind' group does not work for some reason
- Start dhcpd:
#chmod 644 /etc/bind/rndc.key
#/etc/init.
* Starting DHCP server dhcpd3 [ OK ]
#ps -ef | grep dhcpd
dhcpd 3292 1 0 17:11 ? 00:00:00 /usr/sbin/dhcpd3 -q -pf /var/run/
root 3298 3090 0 17:11 pts/0 00:00:00 grep dhcpd
Related branches
affects: | dhcp3 (Ubuntu) → isc-dhcp (Ubuntu) |
Changed in isc-dhcp (Ubuntu): | |
status: | Confirmed → Fix Committed |
Thanks for the bug report, I dont think there is a fix for this due to the nature of the beast.
Regards
chuck