In message <201104270737.p3r7bad4013...@x.it.okstate.edu>, Martin McCormick wri
tes:
> Torinthiel writes:
> > Try deleting the space. Just this. dnssec-keygen inserts space for
> > readability purposes only. If you still have original *.key and
> > *.private files, you can check it yourself, that
Torinthiel writes:
> Try deleting the space. Just this. dnssec-keygen inserts space for
> readability purposes only. If you still have original *.key and
> *.private files, you can check it yourself, that the Key field in
> *private contains exactly the same as *.key, minus the space.
It actually
You can safely take the spaces out of the key string. It's base64, so
whitespace shouldn't be important, but apparently dhcpd cares.
#!/bin/sh
filebase=$(/usr/local/sbin/dnssec-keygen -a hmac-md5 -b 512 -n HOST keyname)
awk '/^Key: /{print $2}' $filebase.private | sed 's/ //g'
Chris Buxton
BlueC
On 04/27/11 07:52, Martin McCormick wrote:
> I changed our tsig key and broke the world. Actually, the DNS's
> are happy. DHCP appears to be happy, but I am generating bad
> keys.
>
> I wrote a script as follows:
>
> #! /bin/sh
> /usr/local/sbin/dnssec-keygen -a hmac-md5 -b 512 -n HOST keyname
>
4 matches
Mail list logo
