Maintained by: NLnet Labs

[Unbound-users] problem with NS editnew.net

Robert Edmonds
Wed Jun 11 20:39:37 CEST 2014


Over Dexia wrote:
> Am 11.06.2014 15:24, schrieb Michael MacNeill:
> > 
> > Thank you Willem, unbound-host was extremely useful in tracking down
> > this problem.
> 
> This inspired me to play around with unbound-host a little.
> 
> When I used the following command line under Debian 7.4, unbound-host
> version 1.4.17, I got an access violation:
> 
> unbound-host -v -4 -d -d -r -C /etc/unbound/unbound.conf xy
> 
> Thgougt you might be interested. I can trace and dig deeper into this,
> if you can't reproduce it easily with this info.

On Debian, the default /etc/unbound/unbound.conf sets
auto-trust-anchor-file in order to do DNSSEC validation, so you probably
got an error message like:

    [...]
    [1402511733] libunbound[29960:0] error: could not open autotrust file for writing, /var/lib/unbound/root.key.29960-0: Permission denied
    [...]

Which is expected, since unprivileged users should not be able to write
to /var/lib/unbound.  Probably the same config file should not be used
for both the system's unbound daemon and an unbound-host invocation.

-- 
Robert Edmonds
edmonds at debian.org