[Bug 472472] [NEW] Start Fails - Permission denied

buliwyf dominik at sennfelder.de
Tue Nov 3 10:25:47 GMT 2009 

Public bug reported:

Binary package hint: bind9

Hello,

after the upgrade from jaunty to karmic bind9 won't start.

user at host:~$ sudo /etc/init.d/bind9 start
 * Starting domain name service... bind9
   ...fail!

A manual start brings the following error:

user at host:~$ sudo named -c /etc/bind/named.conf -f
Auto configuration failed
139957459711760:error:0200100D:system library:fopen:Permission denied:bss_file.c:122:fopen('/usr/lib/ssl/openssl.cnf','rb')
139957459711760:error:2006D002:BIO routines:BIO_new_file:system lib:bss_file.c:127:
139957459711760:error:0E078002:configuration file routines:DEF_LOAD:system lib:conf_def.c:199:

user at host:~$ sudo -u bind named -c /etc/bind/named.conf -f
Auto configuration failed
140005081753360:error:0200100D:system library:fopen:Permission denied:bss_file.c:122:fopen('/usr/lib/ssl/openssl.cnf','rb')
140005081753360:error:2006D002:BIO routines:BIO_new_file:system lib:bss_file.c:127:
140005081753360:error:0E078002:configuration file routines:DEF_LOAD:system lib:conf_def.c:199:

so lets check the File Permission: 
user at host:~$ sudo ls -la /usr/lib/ssl/openssl.cnf
lrwxrwxrwx 1 root root 20 2009-11-03 10:39 /usr/lib/ssl/openssl.cnf -> /etc/ssl/openssl.cnf

user at host:~$ sudo ls -la /etc/ssl/openssl.cnf
-rw-r--r-- 1 root root 9374 2008-07-25 20:26 /etc/ssl/openssl.cnf

Now an strace output:
munmap(0x7f284b0fc000, 135168)          = 0
open("/usr/lib/ssl/openssl.cnf", O_RDONLY) = -1 EACCES (Permission denied)
write(2, "Auto configuration failed\n", 26Auto configuration failed
) = 26

It seems bind can't read the file, but the file permissions are ok.
/ is mount rw too: 
user at host:~$ sudo mount
/dev/sda1 on / type ext3 (rw,relatime,errors=remount-ro,usrquota,grpquota)

** Affects: bind9 (Ubuntu)
     Importance: Undecided
         Status: New

-- 
Start Fails - Permission denied
https://bugs.launchpad.net/bugs/472472
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to bind9 in ubuntu.

More information about the Ubuntu-server-bugs mailing list