Closed aaronbrooks-gh closed 5 years ago
The entrypoint script runs chmod -R 750 /etc/bind
which reverts my temporary fix every time the container is restarted.
I propose changing the entrypoint script to use permissions 770
instead of 750
for /etc/bind
.
Looks like I'm actually supposed to put the zone files in /var/cache/bind
not /etc/bind
as is done on Debian.
PEBKAC...
:)
I have configured bind to allow dynamic updates from my LAN, with two bound volumes
/etc/bind
and/var/cache/bind
. When a zone update request is received, it fails withSERVFAIL
.The bind logs reveal it is failing because bind does not have permissions to create the journal file at
/etc/bind/zones/db.lan.jnl
:If I run
/bin/ash
in the running container and use that to executechmod 770 /etc/bind/zones
the dynamic update completes successfully: