> Now the private key is inaccessible to the named process, which is > running as user bind. User bind is a member of group bind.
Any time a private key file is rewritten, the mode is changed to 600. There's no rule that it has to be owned by root, though; could you just chown it to user bind? > Aside from this, is the permissions change made by dnssec-settime a > feature or a bug? I consider it a feature, though opinions may vary. -- Evan Hunt -- e...@isc.org Internet Systems Consortium, Inc. _______________________________________________ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
