服务器 Gind.cn
  1. 服务器 Gind.cn
  3. 命名失败,由于权限和连接失败错误
Intereting Posts
我的信息没有达到部分或全部预期收件人? Outlook和Exchange Server 2007 SP1 连接根域名到dyndns? 在Ubuntu和CentOS上交换 在允许打印机安装并通过GPO改变LAN连接后,用户仍然得到UAC提示? 你问每一个新的雇主? Outlook的imap连接到Exchange Nginx + SSL + Rails + Juggernaut(Node.js)+ Engineyard 不能SSH到服务器的主机名,但可以IP 无缝SSO与Kerberos,IE浏览器,Firefox,LDAP活动目录 检查不同服务器之间加载速度慢的原因 nginx:代理tcpstream量取决于远程ip 如何设置Apache以重叠虚拟主机通配符服务器别名? 我如何知道哪些ColdFusion修补程序已安装? 客户端无法通过Squeeze网关访问某些HTTPS 我刚刚安装了python virtualenv之后,如何更改我的PYTHONPATH?

命名失败,由于权限和连接失败错误

我正面临一个严重的问题,已经淘汰了我的服务器。

由于某种未知的原因,尽pipe我尽了最大的努力来修复日志中发现的问题,但命名已不再起作用。

每当我尝试运行rebuilddnsconfig (cpanel)时,出现此错误 

warn [fixrndc] /usr/sbin/rndc status failed: rndc: connect failed: 127.0.0.1#953: connection refused

而当我检查名为的状态: 

 root@host [/etc]# /etc/init.d/named status rndc: connect failed: 127.0.0.1#953: connection refused

这是我的/ var / log / messages尾部 

 root@host [/etc]# tail /var/log/messages Nov 24 22:32:25 host named[21687]: listening on IPv4 interface eth1, 108.xx.18.18#53 Nov 24 22:32:25 host named[21687]: listening on IPv4 interface eth1:cp1, 108.xx.18.19#53 Nov 24 22:32:25 host named[21687]: listening on IPv4 interface eth1:cp2, 108.xx.18.20#53 Nov 24 22:32:25 host named[21687]: listening on IPv4 interface eth1:cp3, 108.xx.18.21#53 Nov 24 22:32:25 host named[21687]: listening on IPv4 interface eth1:cp4, 108.xx.18.22#53 Nov 24 22:32:25 host named[21687]: listening on IPv4 interface eth1:cp5, 108.xx.18.23#53 Nov 24 22:32:25 host named[21687]: command channel listening on 127.0.0.1#953 Nov 24 22:32:25 host named[21687]: couldn't open pid file '/var/run/named/named.pid': Permission denied Nov 24 22:32:25 host named[21687]: exiting (due to early fatal error) Nov 24 22:32:25 host /etc/init.d/named: named startup succeeded

我的configuration被赋予这些权限: 

 root@host [/etc]# ls -lh | grep named.conf -rw-r--r-- 1 named root 4.9K Nov 24 22:11 named.conf

我的named.conf有以下代码:(减去区域) 

 include "/etc/rndc.key"; controls { inet 127.0.0.1 allow { localhost; } keys { "rndc-key"; }; }; options { /* make named use port 53 for the source of all queries, to allow * firewalls to block all ports except 53: */ // query-source port 53; recursion no; /* We no longer enable this by default as the dns posion exploit has forced many providers to open up their firewalls a bit */ // Put files that named is allowed to write in the data/ directory: directory "/var/named"; // the default pid-file "/var/run/named/named.pid"; dump-file "data/cache_dump.db"; statistics-file "data/named_stats.txt"; /* memstatistics-file "data/named_mem_stats.txt"; */ allow-transfer { "none"; }; };

rndc的权限: 

 root@host [/etc]# ls -lh | grep rndc -rw-rw---- 1 named named 479 Nov 24 21:29 rndc.conf -rw-rw---- 1 named named 479 Nov 24 21:16 rndc.conf.bak -rw-rw---- 1 named named 77 Nov 24 21:29 rndc.key

我的命名文件夹权限: 

 ls -lh /var/run/named/ total 8.0K drwxrwxr-x 2 named named 4.0K Jan 7 2013 ./ drwxrwx--- 22 root root 4.0K Nov 24 22:29 ../

这里有什么突出的东西吗?

谢谢你的帮助!

似乎很清楚,(a)名为无法写入其pid文件的基本问题。 想到的可能性是

  1. passwd文件中指定用户的冲突条目
  2. SELinux的

build议你如何在评论中testing这些理论。

由于在named.conf中更改pid文件的位置已经修复了问题,因此/ var / run下的文件夹权限可能有问题。