> On Aug 7, 2024, at 12:02 AM, Casey Deccio wrote:
>
> I'm probably missing something obvious here, but I'm trying to figure out how
> to "delete" a DNSKEY from zone that uses inline signing.
So I finally just did the following:
$ sudo rm /var/cache/bind/Kdns-lab.info.+013+50277.*
$ sudo /etc
Hi Casey,
Don't muck around with dnssec-settime. As Peter mentioned earlier, your
key seems to be in rollover, awaiting DS publication. I'll repeat what
he said:
The DS for the new key is only rumored. If you have seen the DS in the
parent, tell BIND so:
rndc dnssec -checkds -key 48266
> On Aug 7, 2024, at 12:02 AM, Casey Deccio wrote:
>
> Hi all,
>
> I'm probably missing something obvious here, but I'm trying to figure out how
> to "delete" a DNSKEY from zone that uses inline signing. The zone statement
> looks like this:
>
> zone "dns-lab.info" {
> t
The DS for the new key is only rumored. I believe you want a `rndc
dnssec -checkds -key 48266 published` and maybe another to withdraw
the 50277 key.
Peter
--
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list
ISC funds the development of this software with
Hi all,
I'm probably missing something obvious here, but I'm trying to figure out how
to "delete" a DNSKEY from zone that uses inline signing. The zone statement
looks like this:
zone "dns-lab.info" {
type master;
file "/var/cache/bind/db.dns-lab.info";
5 matches
Mail list logo
