Skocz do zawartości
alexis011

Serwer BIND nie wstaje

Polecane posty

Ubuntu

Dokonuję restartów binda i nie wiem juz co robic. Restartuje serwer to samo.Nie wiem czy tylko bind czy cos jeszcze sie zepsuło. Prosze o pilną pomoc bo idzie sie załamac ;(

Stało się to wtedy gdy wykonywałem backup i sie chyba jakos przepelnil i po restarcie juz nic sie nie podniosło...

żadna domena mi nie wstaje. Działa tylko ssh VPS_a

Udostępnij ten post


Link to postu
Udostępnij na innych stronach
root@s18368549:~# ls /var/log

apport.log auth.log dmesg dmesg.2.gz dmesg.4.gz fsck landscape maillog plesk udev

apt boot.log dmesg.0 dmesg.3.gz dpkg.log kern.log mail.err mail.log syslog unattended-upgrades



Ubuntu

Edytowano przez alexis011 (zobacz historię edycji)

Udostępnij ten post


Link to postu
Udostępnij na innych stronach

Jul 16 21:53:35 s18368549 named[5685]: ----------------------------------------------------
Jul 16 21:53:35 s18368549 named[5685]: BIND 9 is maintained by Internet Systems Consortium,
Jul 16 21:53:35 s18368549 named[5685]: Inc. (ISC), a non-profit 501(c)(3) public-benefit 
Jul 16 21:53:35 s18368549 named[5685]: corporation.  Support and training for BIND 9 are 
Jul 16 21:53:35 s18368549 named[5685]: available at https://www.isc.org/support
Jul 16 21:53:35 s18368549 named[5685]: ----------------------------------------------------
Jul 16 21:53:35 s18368549 named[5685]: adjusted limit on open files from 4096 to 1048576
Jul 16 21:53:35 s18368549 named[5685]: found 1 CPU, using 2 worker threads
Jul 16 21:53:35 s18368549 named[5685]: using 1 UDP listener per interface
Jul 16 21:53:35 s18368549 named[5685]: using up to 4096 sockets
Jul 16 21:53:35 s18368549 named[5685]: loading configuration from '/etc/named.conf'
Jul 16 21:53:35 s18368549 kernel: [ 2434.858771] type=1400 audit(1437076415.974:19): apparmor="DENIED" operation="open" profile="/usr/sbin/named" name="/var/named/run-root/etc/named.conf" pid=5687 comm="named" requested_mask="r" denied_mask="r" fsuid=109 ouid=0
Jul 16 21:53:35 s18368549 named[5685]: open: /etc/named.conf: permission denied
Jul 16 21:53:35 s18368549 named[5685]: loading configuration: permission denied
Jul 16 21:53:35 s18368549 named[5685]: exiting (due to fatal error)
AppArmor odmawia BINDowi dostępu do jego własnej konfiguracji.

 

To się tak nagle stało? Działało poprawnie i przestało? Samo z siebie?

Udostępnij ten post


Link to postu
Udostępnij na innych stronach

Ktoś powinien na to rzucić okiem ogólnie, ale spróbuj dopisać prawa odczytu do tego katalogu

 

/var/named/** r,
do pliku z jego profilem w /etc/apparmor.d/ (named będzie miał w nazwie pewnie).

Udostępnij ten post


Link to postu
Udostępnij na innych stronach

zapisałem , zrestartowałem i nic ;( nie działaja domeny, plesk. Nic. tylko poczta


Bind już działa.Moze cos z configiem. Cholera wie ;( Ale domeny jak nie działały tak nie działają.

Udostępnij ten post


Link to postu
Udostępnij na innych stronach
Gość Spoofy

Obsługa apparmor'a :

1) Pierw tryb complain: aa-complain /usr/sbin/named
2) Potem restart usługi: service bind9 restart 
3) Potem dopisanie regułek: aa-logprof
4) Na końcu tryb enforce: aa-enforce /usr/sbin/named

;)

 

P.S. Na przyszłość :

cat /var/log/syslog | grep -e "named" -e "bind"
Edytowano przez Spoofy (zobacz historię edycji)
  • Upvote 1

Udostępnij ten post


Link to postu
Udostępnij na innych stronach

Dzieją się jakieś cyrki

 

 

 

root@s18368549:~# cat /var/log/syslog | grep -e "named" -e "bind"

Jul 16 21:10:24 s18368549 kernel: [ 336.377810] type=1400 audit(1437073824.596:34): apparmor="STATUS" operation="profile_replace" profile="unconfined" name="/usr/sbin/named" pid=6777 comm="apparmor_parser"
Jul 16 21:12:49 s18368549 kernel: [ 0.136968] TCP bind hash table entries: 8192 (order: 5, 131072 bytes)
Jul 16 21:12:49 s18368549 kernel: [ 0.137025] TCP: Hash tables configured (established 8192 bind 8192)
Jul 16 21:13:10 s18368549 kernel: [ 0.152878] TCP bind hash table entries: 8192 (order: 5, 131072 bytes)
Jul 16 21:13:10 s18368549 kernel: [ 0.152934] TCP: Hash tables configured (established 8192 bind 8192)
Jul 16 21:13:30 s18368549 kernel: [ 29.113819] type=1400 audit(1437074010.225:18): apparmor="DENIED" operation="open" profile="/usr/sbin/named" name="/opt/psa/admin/conf/openssl.cnf" pid=2200 comm="named" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
Jul 16 21:53:35 s18368549 named[5685]: starting BIND 9.9.5-3ubuntu0.3-Ubuntu -t /var/named/run-root -c /etc/named.conf -u bind -n 2
Jul 16 21:53:35 s18368549 named[5685]: built with '--prefix=/usr' '--mandir=/usr/share/man' '--infodir=/usr/share/info' '--sysconfdir=/etc/bind' '--localstatedir=/var' '--enable-threads' '--enable-largefile' '--with-libtool' '--enable-shared' '--enable-static' '--with-openssl=/usr' '--with-gssapi=/usr' '--with-gnu-ld' '--with-geoip=/usr' '--with-atf=no' '--enable-ipv6' '--enable-rrl' '--enable-filter-aaaa' 'CFLAGS=-fno-strict-aliasing -DDIG_SIGCHASE -O2'
Jul 16 21:53:35 s18368549 named[5685]: ----------------------------------------------------
Jul 16 21:53:35 s18368549 named[5685]: BIND 9 is maintained by Internet Systems Consortium,
Jul 16 21:53:35 s18368549 named[5685]: Inc. (ISC), a non-profit 501©(3) public-benefit
Jul 16 21:53:35 s18368549 named[5685]: corporation. Support and training for BIND 9 are
Jul 16 21:53:35 s18368549 named[5685]: available at https://www.isc.org/support
Jul 16 21:53:35 s18368549 named[5685]: ----------------------------------------------------
Jul 16 21:53:35 s18368549 named[5685]: adjusted limit on open files from 4096 to 1048576
Jul 16 21:53:35 s18368549 named[5685]: found 1 CPU, using 2 worker threads
Jul 16 21:53:35 s18368549 named[5685]: using 1 UDP listener per interface
Jul 16 21:53:35 s18368549 named[5685]: using up to 4096 sockets
Jul 16 21:53:35 s18368549 named[5685]: loading configuration from '/etc/named.conf'
Jul 16 21:53:35 s18368549 kernel: [ 2434.858771] type=1400 audit(1437076415.974:19): apparmor="DENIED" operation="open" profile="/usr/sbin/named" name="/var/named/run-root/etc/named.conf" pid=5687 comm="named" requested_mask="r" denied_mask="r" fsuid=109 ouid=0
Jul 16 21:53:35 s18368549 named[5685]: open: /etc/named.conf: permission denied
Jul 16 21:53:35 s18368549 named[5685]: loading configuration: permission denied
Jul 16 21:53:35 s18368549 named[5685]: exiting (due to fatal error)
Jul 16 22:12:58 s18368549 kernel: [ 0.156771] TCP bind hash table entries: 8192 (order: 5, 131072 bytes)
Jul 16 22:12:58 s18368549 kernel: [ 0.156830] TCP: Hash tables configured (established 8192 bind 8192)
Jul 16 22:13:21 s18368549 kernel: [ 35.349534] type=1400 audit(1437077601.754:24): apparmor="DENIED" operation="open" profile="/usr/sbin/named" name="/opt/psa/admin/conf/openssl.cnf" pid=2268 comm="named" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
Jul 16 22:29:46 s18368549 kernel: [ 1020.021294] type=1400 audit(1437078586.426:25): apparmor="STATUS" operation="profile_replace" profile="unconfined" name="/usr/sbin/named" pid=3924 comm="apparmor_parser"
Jul 16 22:30:40 s18368549 named[4003]: starting BIND 9.9.5-3ubuntu0.3-Ubuntu -t /var/named/run-root -c /etc/named.conf -u bind -n 2
Jul 16 22:30:40 s18368549 named[4003]: built with '--prefix=/usr' '--mandir=/usr/share/man' '--infodir=/usr/share/info' '--sysconfdir=/etc/bind' '--localstatedir=/var' '--enable-threads' '--enable-largefile' '--with-libtool' '--enable-shared' '--enable-static' '--with-openssl=/usr' '--with-gssapi=/usr' '--with-gnu-ld' '--with-geoip=/usr' '--with-atf=no' '--enable-ipv6' '--enable-rrl' '--enable-filter-aaaa' 'CFLAGS=-fno-strict-aliasing -DDIG_SIGCHASE -O2'
Jul 16 22:30:40 s18368549 named[4003]: ----------------------------------------------------
Jul 16 22:30:40 s18368549 named[4003]: BIND 9 is maintained by Internet Systems Consortium,
Jul 16 22:30:40 s18368549 named[4003]: Inc. (ISC), a non-profit 501©(3) public-benefit
Jul 16 22:30:40 s18368549 named[4003]: corporation. Support and training for BIND 9 are
Jul 16 22:30:40 s18368549 named[4003]: available at https://www.isc.org/support
Jul 16 22:30:40 s18368549 named[4003]: ----------------------------------------------------
Jul 16 22:30:40 s18368549 named[4003]: adjusted limit on open files from 4096 to 1048576
Jul 16 22:30:40 s18368549 named[4003]: found 1 CPU, using 2 worker threads
Jul 16 22:30:40 s18368549 named[4003]: using 1 UDP listener per interface
Jul 16 22:30:40 s18368549 named[4003]: using up to 4096 sockets
Jul 16 22:30:40 s18368549 named[4003]: loading configuration from '/etc/named.conf'
Jul 16 22:30:40 s18368549 kernel: [ 1074.034764] type=1400 audit(1437078640.438:26): apparmor="DENIED" operation="open" profile="/usr/sbin/named" name="/var/named/run-root/etc/named.conf" pid=4005 comm="named" requested_mask="r" denied_mask="r" fsuid=109 ouid=0
Jul 16 22:30:40 s18368549 named[4003]: open: /etc/named.conf: permission denied
Jul 16 22:30:40 s18368549 named[4003]: loading configuration: permission denied
Jul 16 22:30:40 s18368549 named[4003]: exiting (due to fatal error)
Jul 16 22:38:19 s18368549 kernel: [ 0.157189] TCP bind hash table entries: 8192 (order: 5, 131072 bytes)
Jul 16 22:38:19 s18368549 kernel: [ 0.157245] TCP: Hash tables configured (established 8192 bind 8192)
Jul 16 22:38:42 s18368549 kernel: [ 36.244156] type=1400 audit(1437079122.122:24): apparmor="DENIED" operation="open" profile="/usr/sbin/named" name="/opt/psa/admin/conf/openssl.cnf" pid=2247 comm="named" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
Jul 16 22:46:40 s18368549 kernel: [ 514.349220] type=1400 audit(1437079600.231:25): apparmor="STATUS" operation="profile_replace" profile="unconfined" name="/usr/sbin/named" pid=3428 comm="apparmor_parser"
Jul 16 22:49:08 s18368549 kernel: [ 0.156739] TCP bind hash table entries: 8192 (order: 5, 131072 bytes)
Jul 16 22:49:08 s18368549 kernel: [ 0.156795] TCP: Hash tables configured (established 8192 bind 8192)
Jul 16 22:49:29 s18368549 kernel: [ 32.471364] type=1400 audit(1437079769.927:24): apparmor="DENIED" operation="open" profile="/usr/sbin/named" name="/opt/psa/admin/conf/openssl.cnf" pid=2247 comm="named" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
Jul 16 22:50:20 s18368549 kernel: [ 0.113143] TCP bind hash table entries: 8192 (order: 5, 131072 bytes)
Jul 16 22:50:20 s18368549 kernel: [ 0.113201] TCP: Hash tables configured (established 8192 bind 8192)
Jul 16 22:50:45 s18368549 kernel: [ 35.538985] type=1400 audit(1437079845.130:24): apparmor="DENIED" operation="open" profile="/usr/sbin/named" name="/opt/psa/admin/conf/openssl.cnf" pid=2267 comm="named" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
Jul 16 22:58:57 s18368549 named[3429]: starting BIND 9.9.5-3ubuntu0.3-Ubuntu -t /var/named/run-root -c /etc/named.conf -u bind -n 2
Jul 16 22:58:57 s18368549 named[3429]: built with '--prefix=/usr' '--mandir=/usr/share/man' '--infodir=/usr/share/info' '--sysconfdir=/etc/bind' '--localstatedir=/var' '--enable-threads' '--enable-largefile' '--with-libtool' '--enable-shared' '--enable-static' '--with-openssl=/usr' '--with-gssapi=/usr' '--with-gnu-ld' '--with-geoip=/usr' '--with-atf=no' '--enable-ipv6' '--enable-rrl' '--enable-filter-aaaa' 'CFLAGS=-fno-strict-aliasing -DDIG_SIGCHASE -O2'
Jul 16 22:58:57 s18368549 named[3429]: ----------------------------------------------------
Jul 16 22:58:57 s18368549 named[3429]: BIND 9 is maintained by Internet Systems Consortium,
Jul 16 22:58:57 s18368549 named[3429]: Inc. (ISC), a non-profit 501©(3) public-benefit
Jul 16 22:58:57 s18368549 named[3429]: corporation. Support and training for BIND 9 are
Jul 16 22:58:57 s18368549 named[3429]: available at https://www.isc.org/support
Jul 16 22:58:57 s18368549 named[3429]: ----------------------------------------------------
Jul 16 22:58:57 s18368549 named[3429]: adjusted limit on open files from 4096 to 1048576
Jul 16 22:58:57 s18368549 named[3429]: found 1 CPU, using 2 worker threads
Jul 16 22:58:57 s18368549 named[3429]: using 1 UDP listener per interface
Jul 16 22:58:57 s18368549 named[3429]: using up to 4096 sockets
Jul 16 22:58:57 s18368549 named[3429]: loading configuration from '/etc/named.conf'
Jul 16 22:58:57 s18368549 named[3429]: using default UDP/IPv4 port range: [1024, 65535]
Jul 16 22:58:57 s18368549 named[3429]: using default UDP/IPv6 port range: [1024, 65535]
Jul 16 22:58:57 s18368549 named[3429]: listening on IPv6 interfaces, port 53
Jul 16 22:58:57 s18368549 named[3429]: listening on IPv4 interface lo, 127.0.0.1#53
Jul 16 22:58:57 s18368549 named[3429]: listening on IPv4 interface eth0, 87.106.246.151#53
Jul 16 22:58:57 s18368549 named[3429]: listening on IPv4 interface eth0:1, 217.160.6.249#53
Jul 16 22:58:57 s18368549 kernel: [ 527.868897] type=1400 audit(1437080337.476:25): apparmor="DENIED" operation="mknod" profile="/usr/sbin/named" name="/var/named/run-root/var/run/named/named.pid" pid=3431 comm="named" requested_mask="c" denied_mask="c" fsuid=109 ouid=109
Jul 16 22:58:57 s18368549 named[3429]: Could not open '/var/run/named/named.pid'.
Jul 16 22:58:57 s18368549 named[3429]: Please check file and directory permissions or reconfigure the filename.
Jul 16 22:58:57 s18368549 named[3429]: could not open file '/var/run/named/named.pid': Permission denied
Jul 16 22:58:57 s18368549 named[3429]: generating session key for dynamic DNS
Jul 16 22:58:57 s18368549 named[3429]: Could not open '/var/run/named/session.key'.
Jul 16 22:58:57 s18368549 named[3429]: Please check file and directory permissions or reconfigure the filename.
Jul 16 22:58:57 s18368549 named[3429]: could not open file '/var/run/named/session.key': Permission denied
Jul 16 22:58:57 s18368549 named[3429]: could not create /var/run/named/session.key
Jul 16 22:58:57 s18368549 named[3429]: failed to generate session key for dynamic DNS: permission denied
Jul 16 22:58:57 s18368549 named[3429]: sizing zone task pool based on 6 zones
Jul 16 22:58:57 s18368549 kernel: [ 527.870532] type=1400 audit(1437080337.476:26): apparmor="DENIED" operation="mknod" profile="/usr/sbin/named" name="/var/named/run-root/var/run/named/session.key" pid=3431 comm="named" requested_mask="c" denied_mask="c" fsuid=109 ouid=109
Jul 16 22:58:57 s18368549 named[3429]: set up managed keys zone for view _default, file 'managed-keys.bind'
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 10.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 16.172.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 17.172.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 18.172.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 19.172.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 20.172.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 21.172.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 22.172.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 23.172.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 24.172.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 25.172.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 26.172.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 27.172.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 28.172.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 29.172.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 30.172.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 31.172.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 168.192.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 64.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 65.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 66.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 67.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 68.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 69.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 70.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 71.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 72.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 73.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 74.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 75.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 76.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 77.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 78.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 79.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 80.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 81.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 82.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 83.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 84.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 85.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 86.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 87.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 88.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 89.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 90.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 91.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 92.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 93.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 94.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 95.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 96.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 97.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 98.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 99.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 100.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 101.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 102.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 103.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 104.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 105.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 106.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 107.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 108.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 109.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 110.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 111.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 112.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 113.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 114.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 115.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 116.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 117.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 118.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 119.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 120.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 121.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 122.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 123.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 124.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 125.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 126.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 127.100.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 0.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 127.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 254.169.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 2.0.192.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 100.51.198.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 113.0.203.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 255.255.255.255.IN-ADDR.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: D.F.IP6.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 8.E.F.IP6.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 9.E.F.IP6.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: A.E.F.IP6.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: B.E.F.IP6.ARPA
Jul 16 22:58:57 s18368549 named[3429]: automatic empty zone: 8.B.D.0.1.0.0.2.IP6.ARPA
Jul 16 22:58:57 s18368549 named[3429]: command channel listening on 127.0.0.1#953
Jul 16 22:58:57 s18368549 named[3429]: managed-keys-zone: loaded serial 0
Jul 16 22:58:57 s18368549 named[3429]: zone 0.0.127.IN-ADDR.ARPA/IN: loaded serial 20010622
Jul 16 22:58:57 s18368549 named[3429]: zone fenixweb.pl/IN: has no NS records
Jul 16 22:58:57 s18368549 named[3429]: zone fenixweb.pl/IN: not loaded due to errors.
Jul 16 22:58:57 s18368549 named[3429]: zone krainalinuksa.pl/IN: 'krainalinuksa.pl' found SPF/TXT record but no SPF/SPF record found, add matching type SPF record
Jul 16 22:58:57 s18368549 named[3429]: zone 6.160.217.in-addr.arpa/IN: loaded serial 1433682142
Jul 16 22:58:57 s18368549 named[3429]: zone krainalinuksa.pl/IN: loaded serial 1433682142
Jul 16 22:58:57 s18368549 named[3429]: zone krainalinuxa.pl/IN: 'krainalinuxa.pl' found SPF/TXT record but no SPF/SPF record found, add matching type SPF record
Jul 16 22:58:57 s18368549 named[3429]: zone krainalinuxa.pl/IN: loaded serial 1433676536
Jul 16 22:58:57 s18368549 named[3429]: all zones loaded
Jul 16 22:58:57 s18368549 named[3429]: running
Jul 16 23:00:38 s18368549 kernel: [ 628.689934] type=1400 audit(1437080438.297:31): apparmor="STATUS" operation="profile_replace" profile="unconfined" name="/usr/sbin/named" pid=3547 comm="apparmor_parser"
Jul 16 23:00:41 s18368549 named[3429]: received control channel command 'stop -p'
Jul 16 23:00:41 s18368549 named[3429]: shutting down: flushing changes
Jul 16 23:00:41 s18368549 named[3429]: stopping command channel on 127.0.0.1#953
Jul 16 23:00:41 s18368549 named[3429]: no longer listening on ::#53
Jul 16 23:00:41 s18368549 named[3429]: no longer listening on 127.0.0.1#53
Jul 16 23:00:41 s18368549 named[3429]: no longer listening on 87.106.246.151#53
Jul 16 23:00:41 s18368549 named[3429]: no longer listening on 217.160.6.249#53
Jul 16 23:00:41 s18368549 kernel: [ 631.822254] type=1400 audit(1437080441.429:33): apparmor="DENIED" operation="mknod" profile="/usr/sbin/named" name="/var/named/run-root/var/tmp-jqqheCeAOo" pid=3430 comm="named" requested_mask="c" denied_mask="c" fsuid=109 ouid=109
Jul 16 23:00:41 s18368549 kernel: [ 631.823564] type=1400 audit(1437080441.429:34): apparmor="DENIED" operation="mknod" profile="/usr/sbin/named" name="/var/named/run-root/var/tmp-JlCc8BTptB" pid=3430 comm="named" requested_mask="c" denied_mask="c" fsuid=109 ouid=109
Jul 16 23:00:41 s18368549 named[3429]: exiting
Jul 16 23:00:42 s18368549 named[3627]: starting BIND 9.9.5-3ubuntu0.3-Ubuntu -t /var/named/run-root -c /etc/named.conf -u bind -n 2
Jul 16 23:00:42 s18368549 named[3627]: built with '--prefix=/usr' '--mandir=/usr/share/man' '--infodir=/usr/share/info' '--sysconfdir=/etc/bind' '--localstatedir=/var' '--enable-threads' '--enable-largefile' '--with-libtool' '--enable-shared' '--enable-static' '--with-openssl=/usr' '--with-gssapi=/usr' '--with-gnu-ld' '--with-geoip=/usr' '--with-atf=no' '--enable-ipv6' '--enable-rrl' '--enable-filter-aaaa' 'CFLAGS=-fno-strict-aliasing -DDIG_SIGCHASE -O2'
Jul 16 23:00:42 s18368549 named[3627]: ----------------------------------------------------
Jul 16 23:00:42 s18368549 named[3627]: BIND 9 is maintained by Internet Systems Consortium,
Jul 16 23:00:42 s18368549 named[3627]: Inc. (ISC), a non-profit 501©(3) public-benefit
Jul 16 23:00:42 s18368549 named[3627]: corporation. Support and training for BIND 9 are
Jul 16 23:00:42 s18368549 named[3627]: available at https://www.isc.org/support
Jul 16 23:00:42 s18368549 named[3627]: ----------------------------------------------------
Jul 16 23:00:42 s18368549 named[3627]: adjusted limit on open files from 4096 to 1048576
Jul 16 23:00:42 s18368549 named[3627]: found 1 CPU, using 2 worker threads
Jul 16 23:00:42 s18368549 named[3627]: using 1 UDP listener per interface
Jul 16 23:00:42 s18368549 named[3627]: using up to 4096 sockets
Jul 16 23:00:42 s18368549 named[3627]: loading configuration from '/etc/named.conf'
Jul 16 23:00:42 s18368549 named[3627]: using default UDP/IPv4 port range: [1024, 65535]
Jul 16 23:00:42 s18368549 named[3627]: using default UDP/IPv6 port range: [1024, 65535]
Jul 16 23:00:42 s18368549 named[3627]: listening on IPv6 interfaces, port 53
Jul 16 23:00:42 s18368549 named[3627]: listening on IPv4 interface lo, 127.0.0.1#53
Jul 16 23:00:42 s18368549 named[3627]: listening on IPv4 interface eth0, 87.106.246.151#53
Jul 16 23:00:42 s18368549 named[3627]: listening on IPv4 interface eth0:1, 217.160.6.249#53
Jul 16 23:00:42 s18368549 named[3627]: Could not open '/var/run/named/named.pid'.
Jul 16 23:00:42 s18368549 kernel: [ 633.035224] type=1400 audit(1437080442.641:35): apparmor="DENIED" operation="mknod" profile="/usr/sbin/named" name="/var/named/run-root/var/run/named/named.pid" pid=3629 comm="named" requested_mask="c" denied_mask="c" fsuid=109 ouid=109
Jul 16 23:00:42 s18368549 named[3627]: Please check file and directory permissions or reconfigure the filename.
Jul 16 23:00:42 s18368549 named[3627]: could not open file '/var/run/named/named.pid': Permission denied
Jul 16 23:00:42 s18368549 named[3627]: generating session key for dynamic DNS
Jul 16 23:00:42 s18368549 named[3627]: Could not open '/var/run/named/session.key'.
Jul 16 23:00:42 s18368549 named[3627]: Please check file and directory permissions or reconfigure the filename.
Jul 16 23:00:42 s18368549 named[3627]: could not open file '/var/run/named/session.key': Permission denied
Jul 16 23:00:42 s18368549 named[3627]: could not create /var/run/named/session.key
Jul 16 23:00:42 s18368549 named[3627]: failed to generate session key for dynamic DNS: permission denied
Jul 16 23:00:42 s18368549 named[3627]: sizing zone task pool based on 6 zones
Jul 16 23:00:42 s18368549 kernel: [ 633.038207] type=1400 audit(1437080442.645:36): apparmor="DENIED" operation="mknod" profile="/usr/sbin/named" name="/var/named/run-root/var/run/named/session.key" pid=3629 comm="named" requested_mask="c" denied_mask="c" fsuid=109 ouid=109
Jul 16 23:00:42 s18368549 named[3627]: set up managed keys zone for view _default, file 'managed-keys.bind'
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 10.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 16.172.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 17.172.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 18.172.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 19.172.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 20.172.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 21.172.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 22.172.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 23.172.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 24.172.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 25.172.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 26.172.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 27.172.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 28.172.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 29.172.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 30.172.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 31.172.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 168.192.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 64.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 65.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 66.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 67.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 68.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 69.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 70.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 71.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 72.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 73.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 74.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 75.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 76.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 77.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 78.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 79.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 80.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 81.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 82.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 83.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 84.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 85.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 86.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 87.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 88.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 89.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 90.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 91.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 92.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 93.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 94.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 95.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 96.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 97.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 98.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 99.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 100.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 101.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 102.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 103.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 104.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 105.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 106.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 107.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 108.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 109.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 110.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 111.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 112.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 113.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 114.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 115.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 116.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 117.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 118.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 119.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 120.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 121.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 122.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 123.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 124.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 125.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 126.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 127.100.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 0.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 127.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 254.169.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 2.0.192.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 100.51.198.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 113.0.203.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 255.255.255.255.IN-ADDR.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: D.F.IP6.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 8.E.F.IP6.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 9.E.F.IP6.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: A.E.F.IP6.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: B.E.F.IP6.ARPA
Jul 16 23:00:42 s18368549 named[3627]: automatic empty zone: 8.B.D.0.1.0.0.2.IP6.ARPA
Jul 16 23:00:42 s18368549 named[3627]: command channel listening on 127.0.0.1#953
Jul 16 23:00:42 s18368549 named[3627]: managed-keys-zone: loaded serial 0
Jul 16 23:00:42 s18368549 named[3627]: zone krainalinuksa.pl/IN: 'krainalinuksa.pl' found SPF/TXT record but no SPF/SPF record found, add matching type SPF record
Jul 16 23:00:42 s18368549 named[3627]: zone 0.0.127.IN-ADDR.ARPA/IN: loaded serial 20010622
Jul 16 23:00:42 s18368549 named[3627]: zone krainalinuksa.pl/IN: loaded serial 1433682142
Jul 16 23:00:42 s18368549 named[3627]: zone 6.160.217.in-addr.arpa/IN: loaded serial 1433682142
Jul 16 23:00:42 s18368549 named[3627]: zone fenixweb.pl/IN: has no NS records
Jul 16 23:00:42 s18368549 named[3627]: zone fenixweb.pl/IN: not loaded due to errors.
Jul 16 23:00:42 s18368549 named[3627]: zone krainalinuxa.pl/IN: 'krainalinuxa.pl' found SPF/TXT record but no SPF/SPF record found, add matching type SPF record
Jul 16 23:00:42 s18368549 named[3627]: zone krainalinuxa.pl/IN: loaded serial 1433676536
Jul 16 23:00:42 s18368549 named[3627]: all zones loaded
Jul 16 23:00:42 s18368549 named[3627]: running
Jul 16 23:01:39 s18368549 kernel: [ 0.164878] TCP bind hash table entries: 8192 (order: 5, 131072 bytes)
Jul 16 23:01:39 s18368549 kernel: [ 0.164936] TCP: Hash tables configured (established 8192 bind 8192)
Jul 16 23:02:00 s18368549 kernel: [ 33.289850] type=1400 audit(1437080520.656:24): apparmor="DENIED" operation="open" profile="/usr/sbin/named" name="/opt/psa/admin/conf/openssl.cnf" pid=2227 comm="named" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
Jul 16 23:04:29 s18368549 named[2984]: starting BIND 9.9.5-3ubuntu0.3-Ubuntu -t /var/named/run-root -c /etc/named.conf -u bind -n 2
Jul 16 23:04:29 s18368549 named[2984]: built with '--prefix=/usr' '--mandir=/usr/share/man' '--infodir=/usr/share/info' '--sysconfdir=/etc/bind' '--localstatedir=/var' '--enable-threads' '--enable-largefile' '--with-libtool' '--enable-shared' '--enable-static' '--with-openssl=/usr' '--with-gssapi=/usr' '--with-gnu-ld' '--with-geoip=/usr' '--with-atf=no' '--enable-ipv6' '--enable-rrl' '--enable-filter-aaaa' 'CFLAGS=-fno-strict-aliasing -DDIG_SIGCHASE -O2'
Jul 16 23:04:29 s18368549 named[2984]: ----------------------------------------------------
Jul 16 23:04:29 s18368549 named[2984]: BIND 9 is maintained by Internet Systems Consortium,
Jul 16 23:04:29 s18368549 named[2984]: Inc. (ISC), a non-profit 501©(3) public-benefit
Jul 16 23:04:29 s18368549 named[2984]: corporation. Support and training for BIND 9 are
Jul 16 23:04:29 s18368549 named[2984]: available at https://www.isc.org/support
Jul 16 23:04:29 s18368549 named[2984]: ----------------------------------------------------
Jul 16 23:04:29 s18368549 named[2984]: adjusted limit on open files from 4096 to 1048576
Jul 16 23:04:29 s18368549 named[2984]: found 1 CPU, using 2 worker threads
Jul 16 23:04:29 s18368549 named[2984]: using 1 UDP listener per interface
Jul 16 23:04:29 s18368549 named[2984]: using up to 4096 sockets
Jul 16 23:04:29 s18368549 named[2984]: loading configuration from '/etc/named.conf'
Jul 16 23:04:29 s18368549 named[2984]: using default UDP/IPv4 port range: [1024, 65535]
Jul 16 23:04:29 s18368549 named[2984]: using default UDP/IPv6 port range: [1024, 65535]
Jul 16 23:04:29 s18368549 named[2984]: listening on IPv6 interfaces, port 53
Jul 16 23:04:29 s18368549 named[2984]: listening on IPv4 interface lo, 127.0.0.1#53
Jul 16 23:04:29 s18368549 named[2984]: listening on IPv4 interface eth0, 87.106.246.151#53
Jul 16 23:04:29 s18368549 named[2984]: listening on IPv4 interface eth0:1, 217.160.6.249#53
Jul 16 23:04:29 s18368549 kernel: [ 182.437941] type=1400 audit(1437080669.810:25): apparmor="DENIED" operation="mknod" profile="/usr/sbin/named" name="/var/named/run-root/var/run/named/named.pid" pid=2985 comm="named" requested_mask="c" denied_mask="c" fsuid=109 ouid=109
Jul 16 23:04:29 s18368549 named[2984]: Could not open '/var/run/named/named.pid'.
Jul 16 23:04:29 s18368549 named[2984]: Please check file and directory permissions or reconfigure the filename.
Jul 16 23:04:29 s18368549 named[2984]: could not open file '/var/run/named/named.pid': Permission denied
Jul 16 23:04:29 s18368549 named[2984]: generating session key for dynamic DNS
Jul 16 23:04:29 s18368549 named[2984]: Could not open '/var/run/named/session.key'.
Jul 16 23:04:29 s18368549 named[2984]: Please check file and directory permissions or reconfigure the filename.
Jul 16 23:04:29 s18368549 named[2984]: could not open file '/var/run/named/session.key': Permission denied
Jul 16 23:04:29 s18368549 named[2984]: could not create /var/run/named/session.key
Jul 16 23:04:29 s18368549 named[2984]: failed to generate session key for dynamic DNS: permission denied
Jul 16 23:04:29 s18368549 named[2984]: sizing zone task pool based on 6 zones
Jul 16 23:04:29 s18368549 kernel: [ 182.438620] type=1400 audit(1437080669.810:26): apparmor="DENIED" operation="mknod" profile="/usr/sbin/named" name="/var/named/run-root/var/run/named/session.key" pid=2985 comm="named" requested_mask="c" denied_mask="c" fsuid=109 ouid=109
Jul 16 23:04:29 s18368549 named[2984]: set up managed keys zone for view _default, file 'managed-keys.bind'
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 10.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 16.172.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 17.172.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 18.172.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 19.172.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 20.172.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 21.172.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 22.172.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 23.172.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 24.172.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 25.172.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 26.172.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 27.172.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 28.172.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 29.172.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 30.172.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 31.172.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 168.192.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 64.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 65.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 66.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 67.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 68.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 69.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 70.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 71.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 72.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 73.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 74.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 75.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 76.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 77.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 78.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 79.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 80.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 81.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 82.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 83.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 84.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 85.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 86.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 87.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 88.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 89.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 90.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 91.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 92.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 93.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 94.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 95.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 96.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 97.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 98.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 99.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 100.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 101.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 102.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 103.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 104.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 105.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 106.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 107.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 108.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 109.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 110.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 111.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 112.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 113.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 114.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 115.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 116.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 117.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 118.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 119.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 120.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 121.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 122.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 123.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 124.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 125.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 126.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 127.100.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 0.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 127.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 254.169.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 2.0.192.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 100.51.198.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 113.0.203.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 255.255.255.255.IN-ADDR.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: D.F.IP6.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 8.E.F.IP6.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 9.E.F.IP6.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: A.E.F.IP6.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: B.E.F.IP6.ARPA
Jul 16 23:04:29 s18368549 named[2984]: automatic empty zone: 8.B.D.0.1.0.0.2.IP6.ARPA
Jul 16 23:04:29 s18368549 named[2984]: command channel listening on 127.0.0.1#953
Jul 16 23:04:29 s18368549 named[2984]: managed-keys-zone: loaded serial 0
Jul 16 23:04:29 s18368549 named[2984]: zone krainalinuksa.pl/IN: 'krainalinuksa.pl' found SPF/TXT record but no SPF/SPF record found, add matching type SPF record
Jul 16 23:04:29 s18368549 named[2984]: zone krainalinuksa.pl/IN: loaded serial 1433682142
Jul 16 23:04:29 s18368549 named[2984]: zone 6.160.217.in-addr.arpa/IN: loaded serial 1433682142
Jul 16 23:04:29 s18368549 named[2984]: zone 0.0.127.IN-ADDR.ARPA/IN: loaded serial 20010622
Jul 16 23:04:29 s18368549 named[2984]: zone krainalinuxa.pl/IN: 'krainalinuxa.pl' found SPF/TXT record but no SPF/SPF record found, add matching type SPF record
Jul 16 23:04:29 s18368549 named[2984]: zone krainalinuxa.pl/IN: loaded serial 1433676536
Jul 16 23:04:29 s18368549 named[2984]: zone fenixweb.pl/IN: has no NS records
Jul 16 23:04:29 s18368549 named[2984]: zone fenixweb.pl/IN: not loaded due to errors.
Jul 16 23:04:29 s18368549 named[2984]: all zones loaded
Jul 16 23:04:29 s18368549 named[2984]: running
Jul 16 23:37:25 s18368549 named[2984]: client 80.82.78.96#24382 (mototrazit.ru): query (cache) 'mototrazit.ru/ANY/IN' denied
Jul 16 23:47:15 s18368549 named[2984]: client 80.82.78.96#24382 (mototrazit.ru): query (cache) 'mototrazit.ru/ANY/IN' denied
Jul 17 01:50:25 s18368549 named[2984]: client 182.92.223.10#24580 (www.iana.org): query (cache) 'www.iana.org/A/IN' denied
Jul 17 03:16:20 s18368549 named[2984]: client 74.82.47.10#57765 (dnsscan.shadowserver.org): query (cache) 'dnsscan.shadowserver.org/A/IN' denied
Jul 17 03:18:06 s18368549 named[2984]: client 74.82.47.6#32866 (dnsscan.shadowserver.org): query (cache) 'dnsscan.shadowserver.org/A/IN' denied

 


Dodam to

 

root@s18368549:~# named -g

17-Jul-2015 07:44:30.466 starting BIND 9.9.5-3ubuntu0.3-Ubuntu -g
17-Jul-2015 07:44:30.467 built with '--prefix=/usr' '--mandir=/usr/share/man' '--infodir=/usr/share/info' '--sysconfdir=/etc/bind' '--localstatedir=/var' '--enable-threads' '--enable-largefile' '--with-libtool' '--enable-shared' '--enable-static' '--with-openssl=/usr' '--with-gssapi=/usr' '--with-gnu-ld' '--with-geoip=/usr' '--with-atf=no' '--enable-ipv6' '--enable-rrl' '--enable-filter-aaaa' 'CFLAGS=-fno-strict-aliasing -DDIG_SIGCHASE -O2'
17-Jul-2015 07:44:30.467 ----------------------------------------------------
17-Jul-2015 07:44:30.467 BIND 9 is maintained by Internet Systems Consortium,
17-Jul-2015 07:44:30.468 Inc. (ISC), a non-profit 501©(3) public-benefit
17-Jul-2015 07:44:30.468 corporation. Support and training for BIND 9 are
17-Jul-2015 07:44:30.468 available at https://www.isc.org/support
17-Jul-2015 07:44:30.469 ----------------------------------------------------
17-Jul-2015 07:44:30.469 adjusted limit on open files from 4096 to 1048576
17-Jul-2015 07:44:30.469 found 1 CPU, using 1 worker thread
17-Jul-2015 07:44:30.470 using 1 UDP listener per interface
17-Jul-2015 07:44:30.471 using up to 4096 sockets
17-Jul-2015 07:44:30.508 loading configuration from '/etc/bind/named.conf'
17-Jul-2015 07:44:30.551 reading built-in trusted keys from file '/etc/bind/bind.keys'
17-Jul-2015 07:44:30.560 using default UDP/IPv4 port range: [1024, 65535]
17-Jul-2015 07:44:30.561 using default UDP/IPv6 port range: [1024, 65535]
17-Jul-2015 07:44:30.564 listening on IPv6 interfaces, port 53
17-Jul-2015 07:44:30.570 binding TCP socket: address in use
17-Jul-2015 07:44:30.571 listening on IPv4 interface lo, 127.0.0.1#53
17-Jul-2015 07:44:30.573 binding TCP socket: address in use
17-Jul-2015 07:44:30.573 listening on IPv4 interface eth0, 87.106.246.151#53
17-Jul-2015 07:44:30.575 binding TCP socket: address in use
17-Jul-2015 07:44:30.575 listening on IPv4 interface eth0:1, 217.160.6.249#53
17-Jul-2015 07:44:30.577 binding TCP socket: address in use
17-Jul-2015 07:44:30.578 generating session key for dynamic DNS
17-Jul-2015 07:44:30.579 sizing zone task pool based on 5 zones
17-Jul-2015 07:44:30.620 using built-in root key for view _default
17-Jul-2015 07:44:30.621 set up managed keys zone for view _default, file 'managed-keys.bind'
17-Jul-2015 07:44:30.621 automatic empty zone: 10.IN-ADDR.ARPA
17-Jul-2015 07:44:30.622 automatic empty zone: 16.172.IN-ADDR.ARPA
17-Jul-2015 07:44:30.622 automatic empty zone: 17.172.IN-ADDR.ARPA
17-Jul-2015 07:44:30.623 automatic empty zone: 18.172.IN-ADDR.ARPA
17-Jul-2015 07:44:30.623 automatic empty zone: 19.172.IN-ADDR.ARPA
17-Jul-2015 07:44:30.624 automatic empty zone: 20.172.IN-ADDR.ARPA
17-Jul-2015 07:44:30.624 automatic empty zone: 21.172.IN-ADDR.ARPA
17-Jul-2015 07:44:30.625 automatic empty zone: 22.172.IN-ADDR.ARPA
17-Jul-2015 07:44:30.625 automatic empty zone: 23.172.IN-ADDR.ARPA
17-Jul-2015 07:44:30.625 automatic empty zone: 24.172.IN-ADDR.ARPA
17-Jul-2015 07:44:30.626 automatic empty zone: 25.172.IN-ADDR.ARPA
17-Jul-2015 07:44:30.626 automatic empty zone: 26.172.IN-ADDR.ARPA
17-Jul-2015 07:44:30.626 automatic empty zone: 27.172.IN-ADDR.ARPA
17-Jul-2015 07:44:30.627 automatic empty zone: 28.172.IN-ADDR.ARPA
17-Jul-2015 07:44:30.627 automatic empty zone: 29.172.IN-ADDR.ARPA
17-Jul-2015 07:44:30.627 automatic empty zone: 30.172.IN-ADDR.ARPA
17-Jul-2015 07:44:30.628 automatic empty zone: 31.172.IN-ADDR.ARPA
17-Jul-2015 07:44:30.628 automatic empty zone: 168.192.IN-ADDR.ARPA
17-Jul-2015 07:44:30.628 automatic empty zone: 64.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.629 automatic empty zone: 65.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.629 automatic empty zone: 66.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.629 automatic empty zone: 67.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.630 automatic empty zone: 68.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.630 automatic empty zone: 69.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.631 automatic empty zone: 70.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.631 automatic empty zone: 71.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.631 automatic empty zone: 72.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.632 automatic empty zone: 73.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.632 automatic empty zone: 74.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.632 automatic empty zone: 75.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.633 automatic empty zone: 76.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.633 automatic empty zone: 77.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.633 automatic empty zone: 78.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.634 automatic empty zone: 79.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.634 automatic empty zone: 80.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.634 automatic empty zone: 81.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.635 automatic empty zone: 82.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.635 automatic empty zone: 83.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.635 automatic empty zone: 84.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.636 automatic empty zone: 85.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.636 automatic empty zone: 86.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.637 automatic empty zone: 87.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.637 automatic empty zone: 88.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.637 automatic empty zone: 89.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.638 automatic empty zone: 90.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.638 automatic empty zone: 91.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.638 automatic empty zone: 92.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.639 automatic empty zone: 93.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.639 automatic empty zone: 94.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.639 automatic empty zone: 95.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.640 automatic empty zone: 96.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.640 automatic empty zone: 97.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.640 automatic empty zone: 98.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.641 automatic empty zone: 99.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.641 automatic empty zone: 100.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.641 automatic empty zone: 101.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.642 automatic empty zone: 102.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.642 automatic empty zone: 103.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.642 automatic empty zone: 104.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.643 automatic empty zone: 105.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.643 automatic empty zone: 106.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.643 automatic empty zone: 107.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.644 automatic empty zone: 108.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.644 automatic empty zone: 109.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.644 automatic empty zone: 110.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.645 automatic empty zone: 111.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.645 automatic empty zone: 112.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.646 automatic empty zone: 113.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.646 automatic empty zone: 114.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.646 automatic empty zone: 115.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.647 automatic empty zone: 116.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.647 automatic empty zone: 117.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.647 automatic empty zone: 118.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.648 automatic empty zone: 119.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.648 automatic empty zone: 120.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.648 automatic empty zone: 121.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.649 automatic empty zone: 122.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.649 automatic empty zone: 123.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.649 automatic empty zone: 124.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.650 automatic empty zone: 125.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.650 automatic empty zone: 126.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.650 automatic empty zone: 127.100.IN-ADDR.ARPA
17-Jul-2015 07:44:30.651 automatic empty zone: 254.169.IN-ADDR.ARPA
17-Jul-2015 07:44:30.651 automatic empty zone: 2.0.192.IN-ADDR.ARPA
17-Jul-2015 07:44:30.651 automatic empty zone: 100.51.198.IN-ADDR.ARPA
17-Jul-2015 07:44:30.652 automatic empty zone: 113.0.203.IN-ADDR.ARPA
17-Jul-2015 07:44:30.652 automatic empty zone: 255.255.255.255.IN-ADDR.ARPA
17-Jul-2015 07:44:30.652 automatic empty zone: 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
17-Jul-2015 07:44:30.653 automatic empty zone: 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
17-Jul-2015 07:44:30.653 automatic empty zone: D.F.IP6.ARPA
17-Jul-2015 07:44:30.653 automatic empty zone: 8.E.F.IP6.ARPA
17-Jul-2015 07:44:30.654 automatic empty zone: 9.E.F.IP6.ARPA
17-Jul-2015 07:44:30.654 automatic empty zone: A.E.F.IP6.ARPA
17-Jul-2015 07:44:30.654 automatic empty zone: B.E.F.IP6.ARPA
17-Jul-2015 07:44:30.654 automatic empty zone: 8.B.D.0.1.0.0.2.IP6.ARPA
17-Jul-2015 07:44:30.660 open: /etc/bind/rndc.key: permission denied
17-Jul-2015 07:44:30.660 couldn't add command channel 127.0.0.1#953: permission denied
17-Jul-2015 07:44:30.661 open: /etc/bind/rndc.key: permission denied
17-Jul-2015 07:44:30.661 couldn't add command channel ::1#953: permission denied
17-Jul-2015 07:44:30.661 not using config file logging statement for logging due to -g option
17-Jul-2015 07:44:30.677 managed-keys-zone: loaded serial 2
17-Jul-2015 07:44:30.679 zone 0.in-addr.arpa/IN: loaded serial 1
17-Jul-2015 07:44:30.689 zone 127.in-addr.arpa/IN: loaded serial 1
17-Jul-2015 07:44:30.695 zone 255.in-addr.arpa/IN: loaded serial 1
17-Jul-2015 07:44:30.697 zone localhost/IN: loaded serial 2
17-Jul-2015 07:44:30.698 all zones loaded
17-Jul-2015 07:44:30.702 running
17-Jul-2015 07:44:30.726 managed-keys.bind.jnl: open: permission denied
17-Jul-2015 07:44:30.726 managed-keys-zone: keyfetch_done:dns_journal_open -> unexpected error

 

Udostępnij ten post


Link to postu
Udostępnij na innych stronach
Gość Spoofy

Mother of god....


1) ZASTOSUJ komendy które podałem wcześniej z uwzględnieniem "aa-complain" i "aa-logprof"!

2) Niewiem co za syf tam masz ale:

Jul 16 23:02:00 s18368549 kernel: [   33.289850] type=1400 audit(1437080520.656:24): apparmor="DENIED" operation="open" profile="/usr/sbin/named" name="/opt/psa/admin/conf/openssl.cnf" pid=2227 comm="named" requested_mask="r" denied_mask="r" fsuid=0 ouid=0

wskazuje że masz jakiś "psa" (panel jakiś?) a w nim konfigurację openssl.cnf - do której apparmor nie pozwala wejść.

Znów - dwa wyjścia:

a) ZASTOSUJ KOMENDY KTÓRE PODAŁEM WCZEŚNIEJ

b) wklej wycinek z profilu bind'a - cat /etc/apparmor.d/usr.sbin.named

Potem należy go odpowiednio edytować, dodająć prawdopodobnie :

 /opt/psa/admin/conf/ r,
 /opt/psa/admin/conf/* r,

lecz lepiej to zrobić przez aa-logprof - od tego on jest...

 

 

3) Poczytaj czym jest RBAC - chodź apparmor jest najprostszym z możliwych to może jak go nie ogarniasz to go wyłącz lepiej....

 

4) Na przyszłość podawaj więcej informacji które mogą pomóc w rozwiązaniu problemu bądź znaleźć jego przyczynę ;)

Udostępnij ten post


Link to postu
Udostępnij na innych stronach

Mother of god....

 

wskazuje że masz jakiś "psa" (panel jakiś?)

 

Plesk jakiś ;)

Udostępnij ten post


Link to postu
Udostępnij na innych stronach

Bądź aktywny! Zaloguj się lub utwórz konto

Tylko zarejestrowani użytkownicy mogą komentować zawartość tej strony

Utwórz konto

Zarejestruj nowe konto, to proste!

Zarejestruj nowe konto

Zaloguj się

Posiadasz własne konto? Użyj go!

Zaloguj się


×