Decode "Permission Denied" Message

Mark.Andrews at nominum.com Mark.Andrews at nominum.com
Mon Feb 12 00:10:49 UTC 2001 

Index: src/bin/named/ns_main.c
===================================================================
RCS file: /proj/cvs/isc/bind8/src/bin/named/ns_main.c,v
retrieving revision 8.142
retrieving revision 8.143
diff -u -r8.142 -r8.143
--- ns_main.c	2001/01/15 20:06:25	8.142
+++ ns_main.c	2001/02/02 03:57:06	8.143
@@ -751,6 +751,7 @@
 int
 tcp_send(struct qinfo *qp) {
 	struct qstream *sp;
+	struct sockaddr_in src;
 	int on = 1, n;
 	
 	ns_debug(ns_log_default, 1, "tcp_send");
@@ -777,8 +778,9 @@
 			"tcp_send: setsockopt(SO_REUSEPORT): %s",
 			strerror(errno));
 #endif
-	if (bind(sp->s_rfd, (struct sockaddr *)&server_options->query_source,
-		 sizeof server_options->query_source) < 0)
+	src = server_options->query_source;
+	src.sin_port = htons(0);
+	if (bind(sp->s_rfd, (struct sockaddr *)&src, sizeof(src)) < 0)
 		ns_info(ns_log_default, "tcp_send: bind(query_source): %s",
 			strerror(errno));
 	if (fcntl(sp->s_rfd, F_SETFD, 1) < 0) {

> 
> Can someone help me decode the following message which is showing up in our
> newly-updated BIND 8.2.3 servers over 100 times an hour?
> 
> 
> Feb 11 13:01:15 rtdhcp01 named[7081]: tcp_send: bind(query_source):
> Permission denied
> 
> 
> The daemon is running as user and group named and apparently unable to
> access a tcp resource, but why?  what resource?  what can be done about it?
> and what can I go to get more info?
> 
> AFAIK, no TCP/IP resources are being allocated after the daemon starts.
> There is only one IP interface on the box.  The query-source port is pinned
> to 53.  We have now updated three machines and are getting this message on
> the two of them that are permmitted through the firewall.  Thinking back,
> we didn't see these right away after upgrading the first machine - they
> started a day or so later after the firewall was updated.  Does anyone see
> a connection there?
> 
> Thanks for any ideas.
> 
> Ken Traynham
> 
> 
> 
> 
> 
--
Mark Andrews, Nominum Inc.
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: Mark.Andrews at nominum.com

More information about the bind-users mailing list