On 26 nov 2010, at 19.15, Pierre LEBRECH wrote: > when I add a zone, I use the command "ods-ksmutil". Then, I send a HUP signal > to enforcerd to let it create > the XML signconf for the new zone. Then, a HUP signal to ods-signerd fetch > the new zone and sign it. > > The problem with this process is that all zones are scanned and fetched, just > because I add a single zone. > > So, my question : Is there an easy way to add a zone, get the zone signed, > without scanning all the zones?
We now have a command "ods-ksmutil notify" (which uses the HUP signal) that wake the Enforcer up and process your change. Once the Enforcer have updated the signconf for that zone, then it will call "ods-signer update <zone>". So there is no need to tell the Signer Engine to sign this new zone. How do you HUP the signer? // Rickard _______________________________________________ Opendnssec-user mailing list Opendnssec-user@lists.opendnssec.org https://lists.opendnssec.org/mailman/listinfo/opendnssec-user