I'm using Bind 9.2.0 on Redhat 7.2 and am trying to get stats for DNS so
MRTG can read them. The new rndc keeps asking for a key. How can I
generate a key to use in my /etc/rndc.conf file?
There is a chapter with this , including a snippet about "rndc-confgen"
There exists numerous places that even have brought bind-9's
documentation to webservers, look at :
for a chapter about this.
I've got a bind 9.2 server running in a chroot but I'm having issues with
the rndc command. I can successfully shut down the server, get status,
etc., but when I try and reload the server, I get the following:
Jan 7 16:39:32 dns1 named: [ID 866145 daemon.error]
/etc/named.conf:15: open: /etc/rndc.key: permission denied
Jan 7 16:39:32 dns1 named: [ID 866145 daemon.error] reloading
configuration failed: permission denied
I initially had the key "rndc-key" statement in my /etc/named.conf, so I put
a chmod 640 on the file so it wasn't world readable. I got the above error
so I put the key statement in a rndc.key file and included that in the
/etc/named.conf and then made the rndc.key file chmod 640, but the same
Does anyone have the correct way of permissioning these files in a chroot
environment so the rndc works?
12. rndc question