[Pdns-users] SELinux with master & pdns fails
Kevin P. Fleming
lists.pdns-users at kevin.km6g.us
Sat Jul 29 15:27:06 UTC 2023
There's nothing to 'fix' in pdns-auth. Its behavior is based on the functions it performs.
If there is no SELinux policy for it, or there is one but it's not correct, then SELinux will interfere. The proper solution is to determine whether any of the actions that pdns-auth is taking are invalid. If they are invalid, those are bugs (but this is unlikely); if they are valid, the SELinux policy needs to permit them.
On Sat, Jul 29, 2023, at 11:11, lejeczek via Pdns-users wrote:
> Hi guys.
>
> Setting master=yes - on Centos 9s - results in SE denials and 'pdns' fails to start.
> ...
> About to create 3 backend threads for UDP
> Exiting because communicator thread died with error: Resolver binding to local UDP socket on '0.0.0.0': Permission denied
> Started PowerDNS Authoritative Server.
> ...
>
> Would you know if there ia boolean I'm missing or perhaps pdns' end can be "fixed"?
> It'd be good not to have build dedicated se module for that.
>
> many thanks, L.
> _______________________________________________
> Pdns-users mailing list
> Pdns-users at mailman.powerdns.com
> https://mailman.powerdns.com/mailman/listinfo/pdns-users
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.powerdns.com/pipermail/pdns-users/attachments/20230729/4096a4c0/attachment.htm>
More information about the Pdns-users
mailing list