Maintained by: NLnet Labs

[Unbound-users] could not open autotrust file for writing

W.C.A. Wijngaards
Tue Jul 30 08:42:40 CEST 2013


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi Robert,

On 07/30/2013 05:59 AM, Robert Edmonds wrote:
> shmick at riseup.net wrote:
>> hi list,
>> 
>> im getting permission denied for updating root.key but the
>> permissions are as follows with read/write for unbound
>> user/group
>> 
>> -rw-rw-r-- 1 unbound unbound 139 Jul 27 16:28 
>> /usr/local/etc/unbound/root.key
>> 
>> there's no other way to update the anchor other than running as
>> root ?
> 
> i believe unbound-anchor rename()'s the replacement file onto the 
> existing file, so you will also need permission to write into the 
> containing directory.

Yes it does, to protect against disk-full errors, because you do not
want to be stuck without the root trust anchor (or half of the file).

Best regards,
   Wouter

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.18 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
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=F9KG
-----END PGP SIGNATURE-----