Ubuntu Pastebin

Paste from carl at Wed, 6 Jul 2016 17:24:49 +0000

Download as text 
 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
[ 1302.275951] audit: type=1400 audit(1467823970.769:50): apparmor="DENIED" operation="capable" profile="/usr/sbin/dhcpd" pid=4492 comm="dhcpd" capability=1  capname="dac_override"
[ 1302.275964] audit: type=1400 audit(1467823970.769:51): apparmor="DENIED" operation="capable" profile="/usr/sbin/dhcpd" pid=4492 comm="dhcpd" capability=2  capname="dac_read_search"
juser@dc10b:~$ sudo service isc-dhcp-server status 
● isc-dhcp-server.service - ISC DHCP IPv4 server
   Loaded: loaded (/lib/systemd/system/isc-dhcp-server.service; enabled; vendor preset: enabled)
   Active: failed (Result: exit-code) since Wed 2016-07-06 11:52:50 CDT; 29min ago
     Docs: man:dhcpd(8)
  Process: 4492 ExecStart=/bin/sh -ec      CONFIG_FILE=/etc/dhcp/dhcpd.conf;      if [ -f /etc/ltsp/dhcpd.co
 Main PID: 4492 (code=exited, status=1/FAILURE)

Jul 06 11:52:50 dc10b sh[4492]: Can't open /etc/bind/rndc.key: Permission denied
Jul 06 11:52:50 dc10b sh[4492]: If you think you have received this message due to a bug rather
Jul 06 11:52:50 dc10b sh[4492]: than a configuration issue please read the section on submitting
Jul 06 11:52:50 dc10b sh[4492]: bugs on either our web page at www.isc.org or in the README file
Jul 06 11:52:50 dc10b sh[4492]: before submitting a bug.  These pages explain the proper
Jul 06 11:52:50 dc10b sh[4492]: process and the information we find helpful for debugging..
Jul 06 11:52:50 dc10b sh[4492]: exiting.
Jul 06 11:52:50 dc10b systemd[1]: isc-dhcp-server.service: Main process exited, code=exited, status=1/FAILUR
Jul 06 11:52:50 dc10b systemd[1]: isc-dhcp-server.service: Unit entered failed state.
Jul 06 11:52:50 dc10b systemd[1]: isc-dhcp-server.service: Failed with result 'exit-code'.
juser@dc10b:~$ ls -l /etc/bind/rndc.key
-rw-rw---- 1 bind bind 77 Jul  4 03:25 /etc/bind/rndc.key
juser@dc10b:~$ groups dhcpd
dhcpd : dhcpd bind
juser@dc10b:~$ dmesg|tail -n 2 
[ 1302.275951] audit: type=1400 audit(1467823970.769:50): apparmor="DENIED" operation="capable" profile="/usr/sbin/dhcpd" pid=4492 comm="dhcpd" capability=1  capname="dac_override"
[ 1302.275964] audit: type=1400 audit(1467823970.769:51): apparmor="DENIED" operation="capable" profile="/usr/sbin/dhcpd" pid=4492 comm="dhcpd" capability=2  capname="dac_read_search"
juser@dc10b:~$ cat /etc/apparmor.d/local/usr.sbin.dhcpd
# Site-specific additions and overrides for usr.sbin.dhcpd.
# For more details, please see /etc/apparmor.d/local/README.
/etc/bind/rndc.key r,
Download as text