Monday, December 19, 2011

RHEL 6.x and Bind/RNDC changes

I guess I'm a little late to the party, but I just installed RHEL 6.2 and started playing with it. One of the first things I decided to play with was the new version of Bind 9.7.3 and immediately ran into an issue. I hope this will help others should you have the same issue or not read the appropriate documentation ;)

After installing the bind packages and starting up the default configuration I noticed none of the rndc commands worked. It returned an error about no rndc.key / rndc.conf file. Since I've been on RHEL 5.x for so long I was stumped as to why no rndc.key got created after installing bind. After chatting with the folks in the RHEL irc channel they kindly pointed me to an updated bind errata notice on the Red Hat network, which stated they following...

* previously, the bind package generated the /etc/rndc.key file. However,
generating this file used entropy from /dev/random. Consequently, installation
of the bind package might have hung. The rndc.key is used by rndc utility for
advanced administration commands and is no longer automatically generated during
installation of the bind package. Users requiring the rndc utility should
generate key themselves, via the "rndc-confgen -a" command. (BZ#677381)

So on that advice, I ran the rndc-confgen -a command and generated my key. After that, I set the permissions to root.named rw- r-- --- on the rndc.key file and restarted bind. Guess what, it works now ;)

Friday, November 18, 2011

Monday, November 14, 2011

Almost that time of year...

I know it's a bit early for holiday cheer, but I just love this app and look forward to running it every year... such old school classic!