Hi all,
I have added a new zone and signed it with ods-signer, but I found that the
signature validity and expiration time in the signed zone file was not the time
when I signed,there are hours delay.
The time I ran ods-signer was 20/8/2012 17:08 P.M.,but the signature period
actually began from 20/8/2012 08:08 A.M., there are 9 hours delay. This will
surely affect the validity of signature.
[dns@CST-BJ-104:var/opendnssec/signed]$head example
example. 300 IN SOA ns1.example. mail.example. 1345453691
10800 3600 60480 300
example. 300 IN RRSIG SOA 8 1 300 20120830090809
20120820080811 15901 example.
EI0qhqmK2yZptcF38DkQHVqQqw8Pk7DX7J56iYRF846KzQRg9meVjEeYNNXS4MtEh4F34tvjLdw+NqCSDPPHB7CQQlNUTgTxHbBjEWXt9AbhqhWhfCkTHCRAPEuy6uV8T7ZVTyq5qqyOkpAAXzw77BJ94d3QrzrShHoc405eWrU=
e
Best regards,
Stuart
_______________________________________________
Opendnssec-user mailing list
Opendnssec-user@lists.opendnssec.org
https://lists.opendnssec.org/mailman/listinfo/opendnssec-user
